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ABSTRACT 


The main focus of this paper is the study of elliptic curves, non-singular pro- 
jective curves of genus 1. Under a geometric operation, the rational points E(Q) of an 
elliptic curve & form a group, which is a finitely-generated abelian group by Mordell’s 
theorem. Thus, this group can be expressed as the finite direct sum of copies of Z and 


finite cyclic groups. The number of finite copies of Z is called the rank of E(Q). 


From John Tate and Joseph Silverman [ST92], we have a formula to compute 


the rank of curves of the form E : y? = x? + ax? + ba. In this thesis, we generalize this 


formula, using a purely group theoretic approach, and utilize this generalization to find 


the rank of curves of the form EF : y? = «* +c. To do this, we review a few well-known 


homomorphisms on the curve E : y? = x? + ax? + bx as in Tate and Silverman’s Elliptic 
Curves [ST92], and study analogous homomorphisms on E : y? = «2? + c and relevant 


facts. 


ACKNOWLEDGEMENTS 


I would like to thank all of the wonderful professors I have had at CSUSB. I am 
grateful for all they have taught me. I would like to thank Professor Chavez for always 
having an enjoyable class and making so much sense. I know he deserves to retire someday, 
but part of me hopes he never does. I would also like to thank Professor Trapp for having 
an enjoyable class, his personality and his one-of-a-kind laugh. He patiently gave me 
countless office hours and stayed after every test to go over the problems that would have 
caused me insomnia if they were left unanswered. I would like to thank Professor Ventura 
for convincing me that I was competent enough to do the MA program. I would also like 
to thank Professor McMurran for going above and beyond her job duties. I could not 
possibly list all of the things I would like to thank her for. She is a mentor to me and has 
a vested interest in her students, like no other. Thank you to my committee members, 
Professor Hasan and Professor Sarli. I appreciate all the time they have given me. A 
special thanks to Professor Han for introducing me to this topic and for his excitement 
for it. He is an excellent teacher. I have learned so much from him, not just about elliptic 
curves, but about how to write mathematics and about life. He has given me so much of 
his time, unpaid. If I ever happen upon a large sum of money, I will definitely send it his 
way. 

I would like to thank John Tate and Joseph Siverman for writing a book that 
really simplified elliptic curves. Their ability to bring an advanced topic down to an 
undergraduate level really shows their mastery of the topic. Without their book, I really 
wouldn’t have had an entry point to this topic. 

I would like to thank all of the exceptional people I met throughout the pro- 
gram, my study budies Jeff, Joe, Leonard, Matt and Stephanie. Our talks usually led to 
solutions, and if they didn’t it was comforting to have someone to be lost with. I would 
really like to thank Joe for pushing me to be better. I have so much admiration for him. 
I would also like to thank Stephanie for teaching me so much. I went into this program 
hoping to get a master’s degree, but I came out with something better, her friendship. 

Finally, I would like to thank my husband. He never once harrassed me for 
taking way too long to complete this program. He believed in me even when I didn’t 


believe in me. 


Table of Contents 


Abstract 
Acknowledgements 
List of Figures 


1 Quadratic Polynomials 
1.1 Review of the Projective Plane ..........2..... 02000000. 
1.2 Rational Points on Quadratic Polynomials .................. 
1.3 Rational Points on Cubic Polynomials .................... 
1.4 Formulas for the Group Law... . 2... ...0.0.0. 000002 ee eee 
1.5 Properties of Points of Finite Order ................ 2.0004 


2 Curves of the Form y? = x? + ax? + br +c 
2.1 Mordell’s Theorem .... 2... 2. 
2.2 Some Useful Homomorphisms ..................2 080004 
2.3 Modules and Exact Sequences... . 2... ee 
2A) Ce ati Ot Pe ort dine sara Aah Sep hg OR ga Ht eh ae eee See 


3 Curves of the Form y? = «° +c 
3.1 Homomorphisms for the New Curve ............2..2.+20004 
3.2 A New Formula for Rank ..............00. 20020220004. 


4 Conclusion 


Bibliography 


iii 


List of Figures 


1.1 Two Distinct Lines Intersecting at Two Points ............... 
LiDie TENE OK ety 2 Vises Sot atest Socks alae Meise ahr gets et PE eS a ee 
1.3 Rational Points on the Unit Circle ...................... 
1.4 The Composition of Two Distinct Points ona Cubic ............ 
1.5 The Composition of Two Non-Distinct Points ona Cubic ......... 
1.6 Identity For a Single Point Under *........... 0.0.00 00004 
1.7 The Group Operation @ .... 2... 2... 0.00 ee ee 
1.8 Verification of O as the Identity Element. .................. 
1:9: “Whe Inversesof R -tae.8 ha seis ee ee AL ld Be Boe he he be Bees do ae 
1.10 Investigating Associativity . 2... 2... ee 
1.11 A Singularity For Which f(x) Has a Double Root, Forming a Node... . 
1.12 A Singularity For Which f(x) Has a Triple Root, Forming a Cusp ... . 
1.13°-Projecting P’Ontow =A. won ee A A RY ee 
114. f(z) with Three Real Roots 2... 4.262 Bie SY ee SE A 
Ae lon fee). wile One Meal RGOGt: tow As Se Ne ee Ge a Be Aes ie Be 
TEL Pit DP, ree nope aie sS Saere sue ACA ge vases ieeda aa ohceaRiate 
1.17 The Collision of Pand -2P.............0...0...2204. 


vi 


Chapter 1 


Quadratic Polynomials 


1.1 Review of the Projective Plane 


A major focus of this paper is the group of rational points on an elliptic curve. 
These elliptic curves will be embedded in the projective plane. Hence a brief review of the 
projective plane will be given. We will give two different descriptions of the projective 
plane, one algebraic and one geometric, since it will be useful in certain situations to 


think of one way over the other. 


Algebraic Definition of the Projective Plane 


Consider the Fermat equation 
aN 4 y% =1, (1.1) 


with rational solutions. Let « = 4 and y = & be solutions such that the fractions are in 
lowest terms and the denominators are positive. If we substitute the solutions into (1.1) 


and clear the denominators, we have 
aN d§ + bNcN = Na, 


Now it is clear that c% | aNd. Since & is in lowest terms, a and c are relatively prime. 
7 ; yD 


Thus c% | d’, implying c | d. By a similar argument, we can conclude that d|c. Thus 


c= +d. Recall that we are given that the denominators of ¢ and 8 are positive. There- 


fore, c= d. 


Any rational solution to (1.1) has the form (4, ) and will have (a,b,c) as a 


corresponding integer solution to 
KORN er (1.2) 


Notice that as long as c # 0, the converse is true as well. That is, any integer solution 


(a, b,c) to (1.2) will also have the corresponding rational solution (4, a) to (1.1). In fact, 


any triple (Aa, \b, Ac) for A £ 0 will satisfy (1.2) and will correspond to (4, ) as a solu- 
tion for (1.1). 


Let’s proceed to lay the foundation of the projective plane and see how it earned 
its name. Imagine that the origin in R® is an eye, and that there is a screen (or a plane) in 
R°. Each point on the plane is in one-to-one correspondence with a line passing through 


the point and the eye. We will use this line to describe projective points. 
Definition 1.1.1. A projective point is a line in R® that passes through the origin of R°®. 


Notice that we only need one point in R? besides the origin to describe a line in 
R°, and this point is not unique. For example, the line in R® passing through the origin 
and (1, 2,3) is the same line that passes through the origin and (2, 4,6). This leads us to 


the following definition. 


Definition 1.1.2. The projective plane is the set of triples [a,b,c], with a, b and c not 
all zero, such that two triples [a,b,c] and [a’,b’,c'] are considered to be the same point if 
there is a non-zero A such that a = Aa’, b = Ab! and c= Ac’. The numbers a, b and ¢ are 


called homogeneous coordinates for the point [a, b,c]. 


We will denote the projective plane P?. Brackets will always describe a projec- 


tive point, while parentheses will describe a point in R°. 


An algebraic curve in the affine plane A? is defined to be the set of solutions to 
a polynomial equation in two variables, f(x,y) = 0. Fermat equation (1.1) is an example 
of such a curve. Curves in P? will be given by polynomials in three variables, F(X, Y, Z) 


such that if F'(a,b,c) = 0, then F\(Aa, Xb, Ac) = 0 for all X. 


Definition 1.1.3. A polynomial F'(X,Y,Z) is a homogeneous polynomial of degree d if 
it satisfies the identity 
F(AX, AY, AZ) = F(X Y, Z). 


A projective curve C in P? is the set of solutions to a non-constant homogeneous polyno- 


mial. 


Now, if we look back at the homogeneous polynomial given by Fermat equation 
(1.2), we can see that there are some problematic homogeneous coordinates we need to 
deal with. For example, [0,0, 0] is a solution to (1.2), but it has no corresponding rational 
point (¢, By. We will consider [0, 0,0] as trivial and will discard it. Notice, [0,0,0] is not 
defined in Definition 1.1.2. We need a point distinct from [0,0,0] to define a projective 
point. Also, if N is odd, then [1,—1,0] and [—1,1,0] are nontrivial solutions to (1.2) 
that do not correspond to any rational solutions to (1.1), at least not when using the 


conventional method. 


Consider the sequence of solutions [a;, b;, cj] to (1.2) where [a;, b;, c;] > [1, —1, 0] 
as i + oo and a;, b; and c; are allowed to be real numbers. The corresponding solutions to 
(1.1) approach (00,00). Thus we will have to extend the affine plane A? to include “points 
at infinity,” so that the homogeneous coordinates [1,—1,0] and [—1,1,0] correspond to 


these points. This brings us to our second definition of the projective plane. 


Geometric Derivation of the Projective Plane 


Before we begin developing the projective plane geometrically, we must define 


what a line is in P?. 


Definition 1.1.4. A projective line is a plane in R® that passes through the origin. 


Since a projective line is really a plane in R°, a line can be thought of as the set 


of points [a, b,c] € P? whose coordinates satisfy an equation of the form 
aX + PY +7Z=0 


for some constants a, 6 and ¥y not all zero. 


Any beginning course in Euclidean geometry will include the following postu- 


lates: 
(i) Two distinct points determine a unique line. 
(ii) If two distinct lines intersect, then they intersect in exactly one point. 


In the projective plane, we are going to add points at infinity so that parallel 
lines intersect. Then there will be no distinction between parallel and non-parallel lines. 
Now the question remains as to how many points at infinity we should add. What if we 
add one point at infinity, say P? Consider two sets of parallel lines such that @ || @2 and 
fz || €4, as depicted in Figure 1.1. Then ¢; and @ intersect at P, and @3 and ¢4 intersect 
at P as well. Hence, all four lines intersect at P. This creates a problem since we are 
trying to construct the projective plane so that postulates (i) and (ii) still hold. Property 


(ii) does not hold since, for example, @; and ¢4 intersect at A and P. 


Figure 1.1: Two Distinct Lines Intersecting at Two Points 


For this reason, we add points at infinity for each direction (slope), so that each 
line in P? consists of a line in A? together with a point at infinity corresponding to the 
line’s direction. Two lines have the same direction if and only if they are parallel. This 


leads us to our geometric definition of the projective plane. 


Definition 1.1.5. The projective plane 
P? = A? U {the set of directions in A”}, 


where the extra points in P? associated to directions, that is the points in P? that are not 
in A?, are called points at infinity, and the set of points at infinity is considered to be a 
line L., whose intersection with any other line L is the point at infinity corresponding to 


the direction of L. 


1.2 Rational Points on Quadratic Polynomials 


Now that we have defined the projective plane, we are ready to look at some 
Diophantine equations and lay the foundations for the group we are going to investigate. 
In order to better study our group and its operation, let’s start by considering the ratio- 
nal points that satisfy simpler polynomials that we are familiar with. We will start with 


quadratic polynomials, or conics, since much is known about their behavior. 


Recall that a line of the form az + by + c = 0 is a rational line if a, b and c 
are all rational, and a point (x,y) is a rational point if both its coordinates are rational 
numbers. If a line is drawn through two rational points, then the line will be a rational 
line. We can see this is true by using the point-slope formula to derive the equation of the 
line that passes through the given points. Since Q is field, all of the operations used to 
simplify the point-slope equation will result in rational coefficients. Also, if two rational 
lines intersect, their intersection is a rational point. All of the operations used to solve 


the system would again be closed since Q is a field. 


When will the intersection points of a rational line with a rational conic be 


rational? Upon solving the system, the resulting x-coordinates would be solutions to a 
quadratic equation with rational coefficients. So the points of intersection of the rational 
line with the rational conic will be rational if the solutions to the quadratic equation are 
rational. It is important to note for future reference that if one point of intersection is 
rational, then the other is as well. If one of the points of intersection is irrational, then 


the other is as well since it is its conjugate. 


We might question next if we could find all of the rational points on a rational 
conic. To start, assume we know one rational point O on the given conic. We can draw a 
rational line @,; and project the conic onto @; from O. Every line connecting O to @; will 
intersect the conic at another point. We will consider the line tangent at O as intersecting 
the conic at O twice. This gives a one-to-one correspondence between any point on the 


conic and its corresponding point on ¢;. 


Figure 1.2: Theorem 1.2.1 


Theorem 1.2.1. Let C be a rational conic, O be a rational point and €, be a rational 
line. Let 2 be a line that connects O with €, and that intersects the conic again at point 
P. Let the intersection of 0; and 2 be the point Q. The point P is a rational point if 


and only if Q is a rational point. 


Proof. If P is rational, then there are two rational points on 2, making it a rational line. 
We are given that ¢) is a rational line. We showed earlier that the intersection of two 


rational lines is a rational point. Therefore, Q is a rational point. 


Conversely, if Q is rational, then there are two rational points on 2, so again it 
is a rational line. We saw earlier that the intersection of a rational line with a conic could 
produce rational or irrational solutions to a quadratic, but if we knew that one solution 


was rational, the other was as well. Since we know that O is rational, we have that P is 


rational. 


Example 1.2.1. Find all of the rational points on x? + y? = 1. 


Solution. Using the logic from above, let’s find the proper choice for our rational point 
and rational line. A good choice for the rational line is the y-axis. Let’s use (—1,0) 
as the rational point on the circle. Then the equation of any line ¢ through (—1,0) is 


y =t(1+2), where t is the y-intercept. 


Figure 1.3: Rational Points on the Unit Circle 


To find all of the rational points (x,y) on the circle, we need to find the inter- 
section of @ and the circle. From the circle, we have y? = 1 — x?. From the line, we have 


y? =t(14+2)*. Sol—a2? = t?(1+<2)?. We already know (—1,0) is both on the circle 


and line, so x = —1 is obvioulsy a root of this equation. For « 4 —1, 
Lege? Cae 
(lta)\1—2) = #@(1+2) 
l-zg = #(1+2) 


Solving for x in terms of t, we have 


1-? = Peter 
L- 

Lr = ‘ 
14+ 


Ot 
uo T4+# 
Thus, for any t € Q, the map t > (Ge. ts) will allow us to find all rational 


points on the unit circle except for (—1,0), which we get if we let t + co. On the other 
hand, from y = t(1+ x), we have that the map (x,y) — 7; will map any rational point 
(x,y) on the unit circle, aside from (—1,0), to the set of rational points Q. The point 
(—1,0) would of course map to the point at infinity. To sum up, there is a one-to-one 


correspondence between the set of rational points on the unit circle x? + y? = 1 and the 


set Q of rational points by given by the maps above. 


The formulas derived above also play an integral role in finding formulas to de- 


scribe the lengths of the sides of all primitive right triangles. 


Definition 1.2.1. A Pythagorean triple is a set of positive integers, a, b and c, written 


as (a,b,c), such that a? + b? = c?. 


If (a,b,c) is a Pythagorean triple, then so is (ka, kb, kc) for any positive integer k. 


Definition 1.2.2. We say that a Pythagorean triple is primitive if a, b and c are coprime, 


that is, gcd(a, b,c) = 1. 


The following two lemmas will be useful in the derivation of formulas that de- 


scribe all primitive Pythagorean triples. 


Lemma 1.2.2. If (a,b,c) is a primitive Pythagorean triple, then a and b have opposite 
parity. 


Proof. Since (a, b,c) is a primitive Pythagorean triple, a? +b? = c? and gcd(a, b,c) = 1. If 
a and 6 were both even, then their squares would be even. The sum of two even numbers 
is again even. Then c? is even, from which it follows that c is even. Thus, 2 divides a, b 


and c. This contradicts the fact that gcd(a, b,c) = 1. 


If a and 6b were both odd, then their squares would be odd. Perfect squares are 
congruent to either 0 or 1 modulo 4 depending on if they are even or odd, respectively. 
Then a? = b? = 1 (mod 4), implying that a? +b? = 2 (mod 4). On the other hand, c? = 0 
or 1 (mod 4). This contradicts the fact that a? +b? = c?. Hence, a and b cannot both be 


odd either. Therefore, a and b have opposite parity. 


Lemma 1.2.3. A Pythagorean triple (a,b,c) is primitive if and only if any two of a, b 


and c are relatively prime. 


Proof. Let (a,b,c) be a primitive Pythagorean triple, that is, a?-+b? = c? and gcd(a, b, c) = 
1. If any two of a, b and c were to have a common factor, then that factor would divide 
the sum or difference of their squares, and consequently, the remaining number of a, b 
and c. This contradicts the given that gcd(a, b,c) = 1. Thus, any two of a, 6 and c are 


relatively prime. 


10 


Conversely, assume that for the Pythagorean triple (a,b,c) any two of a, b and 
c are relatively prime. If any two of a, b and c do not share a common factor, then it is 


clear that all three do not have a common factor. Thus, the Pythagorean triple (a, b,c) 


is primitive. 


Example 1.2.2. Derive formulas to describe all primitive Pythagorean triples. 


Solution. Let’s find integers X, Y, and Z such that X2+Y? = Z?. Assume gced(X, Y, Z) = 
1 so that we have a primitive right triangle. By Lemma 1.2.2, X and Y have opposite 
parity. Suppose X is odd and Y is even and dehomogenize X? + Y? = Z?, so that 
x? + y* = 1 where « = x and y = 5. Then (a, y) is a rational point on the unit circle. 


From Example 1.1, we know that 


_1-# 2t 


ics 
ome RE es ee eS 


Letting t = % for m and n relatively prime, the formulas above simplify to 


By Lemma 1.2.3, X and Z are relatively prime, as well as Y and Z. Thus, there 
exists a positive integer k such that kX = n?—m?, kY = 2nm, and kZ = n?+m7?. Let’s 
show that k = 1. Since kX = n? — m? and kZ = n*? + m7, it follows that k | n? — m? 
and k | n?+m?. Thus k divides any linear combination of n? — m? and n? + m?, in 
particular, k | 2n? and k | 2m?. So k |gcd(2n?, 2m?) = 2gcd(n?,m?). Since we assumed 
gcd(n,m) = 1, it follows that ged(n?,m?) = 1. Thus k | 2. So either k = 1 or k = 2. If 
k = 2, then n? — m? is even, implying that n and m have the same parity. If n and m 


are both odd or both even, then n? — m? = 


(mod 4) using the logic from the proof of 
Lemma 1.2.2. However, since X is odd, 2X = 2 (mod 4), which reaches a contradiction. 
Hence, we have k = 1. Therefore, in order to find the side lengths X, Y and Z of any 


primitive right triangle, you can substitute any relatively prime integers m and n into 


X=n?—m?, Y=2mn, and Z=n?+m?’. 


11 


The findings above lead us to the theorem that follows. We used a geometric 
approach to develop the formulas above. Now we will take an algebraic approach to prove 


the theorem below. 


Theorem 1.2.4. If (a,b,c) is a primitive Pythagorean triple (with b even), then 


a=n?—m?, b=2nm, and c=n?+m? 
where n and m are positive integers with n > m, gcd(n,m) = 1 and n and m have opposite 


parity. Conversely, for n and m as above, (a,b,c) yields a primitive Pythagorean triple. 


Proof. Let (a,b,c) be a primitive Pythagorean triple with b even. Then a? + b? = c?, or 


2 2 


equivalently, b? = c? — a?. Since b is even, b? is even. From which it follows that c*? — a 
is even. From Lemma 1.2, we know that a and 6 have opposite parity, so a must be odd. 
If a is odd, then a? is odd. Hence, c? must be odd as well in order for c? — a? to even. 


So we have that both a and c are odd. Then we can conclude that c+a and c—a are even. 


Let ged(c + a,c — a) = d. Then d| c+aandd|c-—a. Thus, d divides any 
linear combination of c+ a and c — a, in particular, d | 2a and d | 2c. It follows that 
d | gcd(2a,2c) = 2 gcd(a,c). Given that (a,b,c) is a primitive Pythagorean triple, by 
Lemma 1.2.3, a and ¢ are relatively prime. Hence, d| 2. So gcd(c + a,c — a) is either 1 
or 2. We showed above that c+ a and c—a are both even, so it must be the case that 


gcd(c + a,c — a) = 2. Thus, ged($#, S*) = 1. 


: b2 _ (cta c—a cta c—a : ‘ cta c—a 
Since ( 5 ) ( 5 ) and 5“ and 5“ are relatively prime, <* and * must 
be perfect squares. Let a =n? and f= m?, Then n? — m? = — — S* =a. Also, 


Qmn = 2/952,/s2 =2,/258 = V2 @ = VP =b, Finally, n? +m? = 444 54 = 
C. 


2 


Now if m,n > 0, then n > m since a = n? — m?, and a side of a triangle can 


only have positive length. Additionally, gcd(n,m) = 1. For ifn and m shared a common 
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factor, any two of a, b and c would not be relatively prime, contradicting Lemma 1.2.2. 
From Lemma 1.2.3, since b is even, a and ¢ are odd. Since n? — m? = a and n? +m? = ¢, 
it follows that n and m must have opposite parity if the sum and difference of the their 


squares is to be odd. 


Conversely, assume that m and n are positive integers such that n > m, 


2 


gcd(n,m) = 1, n and m have opposite parity and a = n?—m?, b = 2nm, and c = n?+m?. 


Then, 


a2+b2 = (n? —m?)? + (2nm)? 

= nt —2n?m? + m4 + 4n?m? 
= n*+2n?m? +2m4 
= (n?+m?)? 


= c. 


Also, we are given that gcd(n,m) = 1, which implies that gcd(n?,m?) = 1. 
Then ged(n? — m?,n? + m?) is either 1 or 2 by the same argument above. Since n and 
m have opposite parity, n? and m? have opposite parity as well. Thus, their sum and 


difference would both be odd, giving us gcd(n? — m?,n? +m?) = 1. Therefore, (a, b,c) is 


primitive by Lemma 1.2.3. 


Example 1.2.3. Find all primitive integral right triangles whose hypotenuse has length 
less than 30. 


Solution. If the hypotenuse is to have length less than 30, then we need n? and m? such 
that n? + m? < 30. The only numbers less than 30 that are the squares of integers are 
1, 4, 9, 16 and 25. The table below shows all of the possible sums of these numbers that 


are less than 30. 
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4+1=5 
4+4=8 
9+1=10 
9+4=13 
9+9=18 
16+1=17 
16+4=20 
16+9=25 
25+1=26 
25+4=29 


ook RA RWWwWnne|ds 
NFWNFEWNENEH/S 


We know from Theorem 1.2.4 that n > m, gcd(n,m) = 1, and n and m have 
opposite parity. Thus we can eliminate the following (n,m): (1,1), (2,2), (3,1), (3,3), 
(4,2), and (5,1). Using the formulas from Theorem 1.2.4 with the remaining (n,m), we 
have the following table describing the possible side lengths. 


n|m|n?—m? | 2mn | n? + m? 
2} 1 3 4 5 
3] 2 3) 12 13 
4} 1 15 8 17 
4} 3 7 24 25 
5 | 2 21 20 29 


Thus, the triples (3, 4,5), (5,12,13), (8,15,17), (7, 24,25) and (20,21, 29) de- 


scribe all primitive integral right triangles whose hypotenuse has length less than 30. 


Example 1.2.4. Are there any rational points on the ellipse 3a? + 4y? = 5? 


Solution. Let « = x and y = z so that in homogenized form we have 3X? +4Y? = 5Z? 
with X, Y and Z having no common factors. If X, Y, and Z had a common factor, we 
could remove it. If this equation has solutions in the integers, then 32? + 4y? = 5 would 


have rational solutions. 
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We start by showing that 3 cannot divide Y or Z. If 3| Y, then 3| 3X? +4Y? 
which implies that 3 | 5Z?. Then 3 | Z, from which it follows that 9 | 5Z?2 — 4Y? or 
equivalently 9 | 3X?. So we have that 3 | X. This contradicts that fact that X, Y and 
Z have no common factors. A similar argument will hold if we assume that 3 | Z. So 3 


cannot divide Y or Z. 


We know that 3X? = 0 (mod 3), but is 57? — 4Y? = 0 (mod 3)? We have only 


a finite number of cases to check since Z3 = {0,1,2} = {0,41}. Also, we showed earlier 


that 3 cannot divide Y or Z, eliminating 0 from our choices. If Y or Z were +1, then 
Y? and Z? would be equivalent to 1 (mod 3). Since 4(1) — 3(1) = 1 # 0 (mod 5), we 
have that 4Z? — 3Y #5Y? (mod 5). Thus, there are no integers X, Y and Z such that 
3X2 +5Y? = 4Z?, from which we can conclude that there are no rational numbers x and 


y such that 3x? + 5y? = 4. 


Example 1.2.5. Does the conic 3x? + 4y?+ 6x + 12y+7 = 0 contain any rational points? 


Solution. The following simplications will take the conic from general form to transfor- 


mational form: 


327 + 4y?+6c2+12y+7 = 0 


307 + 64 +4y2+12y = —-7 
9 

3(c? +2041) 44(y +3y+ 5) 20% 
3 2 

acti +4 (y+ 5) = 5 

307 +40? = 5 


wherea=x+1landb=y+ 3. Now the problem is equivalent to Example 1.2.4. Hence, 


there are no rational points on the given conic. 


Note that any conic can be transformed into a quadratic of the form above. The 
conic from Example 1.2.5 was missing an xy term, but recall that if there is an xy term, 


the conic is no longer parallel to the x- or y-axis. A simple application of the formulas 
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tan20 = fe. x = 2x'cosd — y'siné and y = x'sin@ + y'cos@ for a conic of the form 


Ax? + Bry + Cy? + Dz + Ey + F = 0 will rotate the conic so that it is parallel to the z- 


or y-axis and eliminate the xy term. 


Example 1.2.6. Are there any rational points on the ellipse 3x? + 6y? = 4? 


Solution. It might come as a surprise because this equation seems so similar to the one 


presented in the previous example, but there are rational points that satisfy 32?+6y? = 4, 


such as (3, 2). 


Any beginning Abstract Algebra course discusses solving polynomial equations 
with integer coefficients by reducing the coefficients modulo p. If the polynomial equation 
has no solutions in Z/pZ, then it has no solutions in Z. This is an example of looking at 
a polynomial “locally” to make claims about it “globally.” We have a powerful existence 


theorem that allows us to know whether any quadratic form has solutions. 


Definition 1.2.3. Let K bea field. A quadratic form over K is a degree-two polynomial 


in n variables of the form 


n 
$215 xjpae Cin) = ss Aj jUjL; 


i,j=l 


with each a; ¢ K. 


The question as to the existence of rational points on a given quadratic form is 


answered nicely by the Hasse-Minkowski Local-to-Global Principle. 


Theorem 1.2.5 (Hasse-Minkowski). A homogeneous quadratic form is solvable by inte- 


gers, not all zero, if and only if it is solvable in R and Q, for each prime p. 


Here, the field of p-adic numbers, denoted Q,, helps us determine the existence 
of zeros to any given quadratic form. The reader may consult Jeffrey Hatley’s paper, 


Hasse-Minkowski and the Local-to-Global Principle for a great introduction to p-adic 
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numbers, a proof of Theorem 1.2.5 and an example of how the theorem is used [Hat09]. 
For the intention of this paper, it is enough to note that for every quadratic form over Q, 
Theorem 1.2.5 tells us that the existence of a root in Q is equivalent to the existence of a 


root in each Q, and in R. If there is no root in some Q, or in R, then there is no root in Q. 


While the Hasse-Minkowski Local-to-Global Principle tells us all we need to 
know about the existence of rational solutions for a given conic, the theorem does not 


hold for cubics. Ernest Selmer showed that the equation 
32° + 4y? + 522 =0 


has a solution in each Q, and in R but not in Q. 


1.3. Rational Points on Cubic Polynomials 


We have looked in detail at how to find the rational points on quadratic curves, 
but what methods are available to help us find rational roots for rational cubic curves? 
If we know two rational points on a rational cubic, then we can find a third. If we draw 
a line through the known rational points, say P and Q, then the third intersection of the 
line with the cubic, which we will call P * Q, will also be rational. This is true because 
the line will be a rational line since it has two rational points on it. We can find the 
intersection of the line with the cubic by substitution, which will yield a cubic with ra- 
tional coefficients. If two of the roots of the cubic are rational, then the third is rational, 
otherwise not all of the coefficients of the cubic would be rational. Much of the work 
done in this chapter is an expansion of the work of contained in John Tate and Joseph 


Silverman’s book, Rational Points on Elliptic Curves [ST92, pp. 9-99]. 
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Figure 1.4: The Composition of Two Distinct Points on a Cubic 


We can even obtain other rational points knowing only one rational point. If P 
is the rational point we know on the rational cubic, we can draw the tangent line at P, so 


that P is a double root of the cubic equation. Then the third root must also be rational. 


Figure 1.5: The Composition of Two Non-Distinct Points on a Cubic 


Given any two rational points P and Q on a rational cubic curve, we have de- 
fined a composition law yielding a third point P * Q. Does the operation * acting on the 


set of rational points on a given rational cubic curve form a group? It turns out that it 
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does not since there is no identity element. Sure, there exists a point Q on a given cubic 
curve such that P *«Q = P. Simply draw the tangent to the curve at P and consider the 


line as intersecting the curve twice at P. 


Figure 1.6: Identity For a Single Point Under x 


However, in order for Q to be the identity element of the group, for all P’ on 
the given cubic, it must be that P’ * Q = P’, which is clearly not true. Despite its 
shortcomings as a group operation, the composition law x is going to play a large role in 
the group operation we are going to define. Assume that we know one rational point on 


a given non-singular rational cubic curve. Call this point O. Let @ be defined as follows: 


For two rational points P and Q on a non-singular rational cubic 
curve, draw a line through P x @ and O. The third intersection 
point of this line with the curve will be P®Q. 
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Figure 1.7: The Group Operation ® 


Note that P © Q is equivalent to O « (P *Q). 


We will be studying specific cubic curves in this paper. We will start by looking 
at cubics of the form y? = «°?+ax?+ba+c. This form is called Weierstrass normal form. 
Using projective geometry, one can show that any cubic curve is birationally equivalent to 
a Weierstrass equation. The transformations used to put any cubic curve in Weierstrass 
form are a homomorphisms. That ensures that the structure of the group law described 
above will be preserved. So our study of the group of rational points on a non-singular 
rational cubic curve will be reduced to studying rational points on non-singular rational 


cubics in Weierstrass form. 


For a cubic equation of the form y? = f(z) = 2? +az?+ba+c, if f(x) has 
distinct roots, then the curve is called an elliptic curve. Let’s rigorously define an elliptic 


curve since it is the basis for the group we will be studying in this paper. 


Definition 1.3.1 (Elliptic Curve). An elliptic curve is a nonsingular projective plane 
curve E over a field K of degree 3 together with a point O € E(k) that serves as the 
identity. 


20 


We are going to study elliptic curves in Weierstrass normal form using a little 
projective geometry. Letting « = x and y = Z, the homogeneous form of the Weierstrass 
curve is 


¥?2Z = X94 4X?Z40X27724+cZ?. 


To find the intersection of this curve with the line at infinity, we need to substi- 
tute Z = 0 into the equation above. This substitution gives the equation X? = 0. Thus 
X =0 is a triple root and the cubic has only one point at infinity, the point at which all 


vertical lines meet. 


We will let the point at infinity be the identity element O of our group, hence 
O is considered rational. So the points on our elliptic curve come from A? U {O}. Now 
every line will meet the given elliptic curve three times, which you may recall is necessary 
for the group operation. The line at infinity will meet the curve three times at O. A 
vertical line will intersect the curve at two points in the ordinary affine ry-plane and once 
at O. Any other line will intersect the curve three times in the ry-plane, if we allow our 


intersections to be complex points. 


Given an elliptic curve £, we will denote the group of rational points on E 
together with O under the operation © as E'(Q). Let’s discuss how © will work for this 
group. 


Given two points P and Q on E in Weierstrass form, to find P @ Q, we start 
by drawing the line through P and Q. The third point of intersection is P * Q. Next, we 
draw the vertical line through P*Q so that it intersects O. The third point of intersection 
will be P@Q. Since all elliptic curves are symmetric about the x-axis, you can also think 


about finding P @ Q by reflecting P * Q over the x-axis. 


Now let’s show that the operation © together with set of rational points on a 


given elliptic curve forms a group. 


Theorem 1.3.1. E(Q), where E is a non-singular curve in the projective plane, forms 


an abelian group under ® with the identity O being the point at infinity. 
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Proof. Since P*Q = Q * P, it is clear that P6Q=QO®P. Thus @ is a commutative 
operation. We showed earlier that if we have two rational points on a line, it is a rational 
line. We also showed that if a rational line intersects a rational cubic curve at two rational 
points, then the third intersection is rational as well. So if we start with points P and Q 
both rational, then P « Q will be rational. Since O is rational as well, the line through O 
and P«@ is a rational line. Hence P@Q is a rational point. Thus the the set of rational 


points on a rational cubic is closed under @. 


The point at infinity O is the identity element. To verify this, recall P 6 O is 
equivalent to O * (P * O), and P « CO is the third intersection point of the line through 
P and O with the curve. Thus the third point of intersection of the line through P * O 
and O is P. So P@O = P and by commutativity, O 6 P = P as well. Hence O is the 


identity element. 


Figure 1.8: Verification of O as the Identity Element 


The additive inverse of any point P will be —P such that if P = (z,y), then 
—P = (x,—y). To verify this, we need to check that P@(—P) = O. If we connect P and 
—P, the vertical line’s third point of intersection with F will be O. Next we will connect 
O to O, giving us the tangent line at O which we know intersects EF three times at O. 


Thus P @ (—P) = (-—P)® P=O. 
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Figure 1.9: The Inverse of P 


Showing that @ is associative will take some work. First, let’s verify it pictorally 
since it is not at all obvious that associativity holds. Let P, Q and R be rational points 


on a given rational cubic curve. We want to find (P®@Q)@Rand PO(QE R). 


Figure 1.10: Investigating Associativity 
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It appears as though (P @ Q) « R is the same point as P * (Q @ R). If that is 
true, we are done. For if we adjoin that point to O, the third intersection with the curve 
will be (P®Q)@R and PG®(QE@R). So we will prove associativity by proving that 
(P6Q)*R=Px*(Q@R). In order to do this, we will need the following theorem. 


Theorem 1.3.2 (Cayley-Bacharach [ST92, p. 240]). Let C, Ci and C2 be three cubic 
curves. Suppose C' goes through eight of the nine intersection points of Cy and Co. Then 


C' goes through the ninth intersection point. 


We have nine points in the figure above-O, P, Q, R, P*Q, PQ, Q* R, 
Q © R, and the point at the intersection of 0; and 2, which we will prove lies on the 
curve C’. A cubic equation can be formed by multiplying three linear equations. So let’s 
create the cubic curve C; by multiplying the equations for the dashed lines and C2 by 
multiplying the equations for the solid lines. Then the cubics C; and C2 pass through 
the nine points listed above. We know that C’' passes through eight of those points, so by 
Theorem 1.6, it must pass through the ninth. Thus (P@Q) *« R = P*(Q@ R), implying 
that (P@Q)@R= PO(Q@R). So we have shown associativity. Therefore, the group of 
rational points on a non-singular rational cubic curve forms a commutative group under 


®. 


Let’s examine in detail the restriction that our cubic curves be non-singular. 
There are two types of singularities that can occur for an cubic curve in normal form de- 
pending on the if the point of singularity is a double or triple root of f(z). The pictures 
for both cases are given in Figure 1.11 and Figure 1.12. For each figure, we have translated 
the point of singularity along the z-axis so that is at the origin. The Weierstrass form 


3 


for each type of singularity after the translation is y2 = ?(2+1) and y? = 2°, respectively. 
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Figure 1.11: A Singularity Figure 1.12: A Singularity For 
For Which f(z) Has a Double Which f(z) Has a Triple Root, 
Root, Forming a Node Forming a Cusp 


One of the reasons that we have ruled out non-singular curves from our group 
is that we already know how to find rational points on them. If we project from the 
point of singularity onto a rational line, the line through the point of singularity will 
intersect the curve twice at the point of singularity and at one other point. So we get a 
one-to-one correspondence between any rational point on the cubic and a rational point 
on the rational line. Thus when we have singular points on our curve, we can mimick the 


strategy used in Example 1.2.1. 


Let’s start with the case for which the point of singularity is a double root of 
f(x). For simplicity, let our rational line be x = 1. Since the lines of projection pass 
through the origin, they will have the form y = ma. Let S be the point of singularity 


and P be the point we are projecting onto x = 1. 


We know that P lies on both the elliptic curve and the projection line, so to 


find P, we will substitute y = mx into y? = 2?(2+1). For x? 4 0, we have the following 
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Figure 1.13: Projecting P Onto x = 1 


simplifications: 


yo = «*(¢+1) 
mz? = a2 (¢£4+1) 
m = «+1 
= m1. 


To find the y-coordinate of P, we can substitute 2 = m?—1 into y? = x?(x+1): 


yo = 2 (2+) 
y" = (m? = 1? : m2 
y= m? —m. 


Thus for any rational point (1, m) on our rational line, we have a corresponding 
rational point (m?—1,m?—m) on our elliptic curve. The choice of the rational line x = 1 
was unnecessary since the coordinates of P depends only on the slope of the projection 


line, however, it was included here to mimick earlier strategies. 


Similarly, for y? = «°, the case of singularity for which f(x) has a triple root, 


we have the formulas x = n? and y = n°. 
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Thus, finding the rational points on a singular singular curve is trivial. Also, at 
the point of singularity, there is not a distinct tangent line, which makes our geometric 
discription of our operation @ problematic. For these reasons, will only discuss elliptic 


(non-singular) curves. 


1.4 Formulas for the Group Law 


We have shown geometrically how to add points in our group. Now we will 
develop explicit formulas for adding two points. Let P, = (#1,y1), Po = (x2, y2) and 
P * Q = (23, y3). We learned above that P © Q must have coordinates (x3, —y3). Also, 
let the line through P; and P. be y = ma +v where m = ae To find P x Q, let’s 


substitute y = ma + v into y? = 2? + ax? + br +e: 


yo = aw +ax*+br4+ce 

(mat+v)? = az? +ax*+bet+ce 

ma*+2mvet+u? = 2? +ax?+br+e 
0 = #3? +(a—m?)a2? + (b—2mv)x + (c— v”). 


We know that P;,, Po, and P; * P2 are roots of the equation above, implying that 


a? + (a —m?)ax? + (b— 2mv)a + (c— v”) 


= (x—21)(x — x2)(x% — 23) 


= x? _ (a4 + XQ+ 23) x07 t (1122 + £1%3 4 LQU3)x — £12923. 


2 


Equating the coefficients of the x? term gives m? —a = 21 +22+23. Remember, 


our goal was to find P; * P2 = (a3, y3) given (21, y1) and (x2, y2). We have that x3 = 
m? —a—21,— 2. Also, from y = mx + v, we have yz = mav3+v. Hence, if P, = (x1, y1), 


Py = (2, y2) and y = mz + v is the line between them, then 


P, © Py = (#3, —y3) = (m? — a — 2 — x2, —(maxz+)). (1.3) 


Our derivation of these formulas used the slope between the two given points. 
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We will have to alter our method slightly if the two given points are the same. If we want 
to find P @ P or 2P, where P = (x,y), we will need the slope of the tangent line at P. 


From implicit differentiation on y? = f(x) = v3 + ax? + br +c we have that 


Y= #@) 
dy _ fi(a) 
dx —y 


So the only changes necessary will be that m = f 2 By substituting m into 


the formula for the z-coordinate of P,; @ P2 and letting x; and x2 be the same value, z, 


we have a formula for the x-coordinate of 2P. 


in 2 
m—-a-2re = (42) —a-—2z 
2y 


(3a? + 2ax + 6)? 
= a— 2x 
4a3 + dax? + 4ba + 4e 
x* — 2bx? — 8cxr + b? — dac 
43 + dax? + 4ba + 4e 


We will denote the x-coordinate of 2P as x(2P). Thus 


4 2 2 

x* — 2ba* — 8cx + O° — 4ac 
2P) = ' 1.4 
nee) 4x3 + 4dax? + 4br + 4c ie) 


We will refer to this formula as the duplication formula. Now let’s find the y- 
coordinate for 2P or y(2P). From (1.3), we know that the y-coordinate for (x1, yi) ® 
(x2, y2) is —(magz+v) where x3 was the resulting x-coordinate upon addition of the given 
points. Thus x3 is given by (1.4). Also, y= ma +v implies that v = y— mz. We also 

) 


know that for 2P, m= fat Substituting m, v and x3 into —(ma3 + v), we have 


y(2P) 


f'(z) [| (y mx) 


2Qy 423+ 4ax2+4br+4e 
4 2 2 
= f'(«)(« —2bx*—8cx+b —A4ac) L f(a 
8y3 yo 2Qy 
=f! (x) [(x? —b)? —8cx—4ac]—8y444 f! (x) xy? 
= Sy 


x8 +2ax>+5bx4+20cax? + (20ac—5b?)x? + (8a2c—2ab? —4bc)x+4abc—b3 —8c? 
8y2 ; 


(1.5) 
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1.5 Properties of Points of Finite Order 


We are going to examine some points of finite order since some properties of 
these points will be used in later proofs. Another advantage to looking at these points is 


that we will become more familiar with our group and some of its algebraic structure. 


Definition 1.5.1. An element P of any group is said to have order m if 


mP=POP®::-@P=0, 
eS 


m summands 


but m’P # O for all integers 1 < m’ < m. If such an m exists, then P has finite order; 


otherwise it has infinite order. 


Let’s prove the following proposition about points of order two and three. 


Theorem 1.5.1 (Points of Order Two and Three). Let E be the non-singular cubic curve 
E:y? = f(x) =a? + a2? +be+e. 


[Recall that E is non-singular provided f(x) and f'(x) have no common complex roots.| 
(a) A point P = (x,y) # O on E has order two if and only if y = 0. 


(b) E has exactly four points of order dividing 2. These four points form a group which 


is a product of two cyclic groups of order two. 


(c) A point P = (x,y) 4 O on E has order three if and only if x is a root of the 
polynomial 


3(x) = 3a* + 4ax? + 6bx? + 12cxr + (4ac — b?) é 


(d) E has exactly nine points of order dividing 3. These nine points form a group which 


is a product of two cyclic groups of order three. 


Proof. 


(a) 
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Let P = (x,y) 4 O on E be a point of order two. Then 2P = O, or equivalently 
P=-P. If (x,y) = (x,—y), then y = 0. 


Suppose conversely that P = (z,0) is on E. From what we know about the shape of 
elliptic curves in Weierstrass form, there is a vertical tangent at P. This is supported 
by the fact that wu = Hetil will result in division by zero for P = (#,0). To find 
2P, we draw the vertical tangent to the curve at P, giving us P « P = O. Now we 
draw the line connecting O to O, the line at infinity, which meets the cubic at the 


point O three times. Hence 2P = O. 


From above, we know that points of order two have the property y = 0. For 
y? = f(x) = 2° + ar? + bx +c, the only way y = 0 is if f(x) = 0. Allowing for 
complex coordinates, since f(x) is non-singular, it has three distinct roots, say Pi, 
P, and P3. So there are three points of order two. The only other point on EF with 
order dividing 2 is O, the only point of order one. Thus & has exactly four points of 
order dividing 2, the set {O, Pi, Po, P3}. 


Now let’s show that these four points form a group isomorphic to Zz @ Z. The 
identity O is an element of the group. Every element is its own inverse. We can 
check for closure and that the group is isomorphic to Zz @ Z2 by checking that for 
any points excluding the identity, the sum of any two points is the third point. It is 
clear that any element added to the identity will still be in the group. If we draw the 
line through P, and P2, we have that P, * P) = P3. If we draw the line through P3 
and O we get a vertical line whose third point of intersection is again P3. Since the 
points are colinear, it is clear that if we chose to add any two of the points, we would 
get the third. Finally, associativity is inherited from the group. So the set above is 
a group isomorphic to the Klein group if we allow complex coordinates. If we allow 
only real coordinates, it is either isomorphic to the Klein group or a cyclic group of 
order two since we can have three or one real root as depicted in Figure 1.14 and 
Figure 1.15. If we allow only rational coordinates, our set is either isomorphic to the 


Klein group, a cyclic group of order two, or is the trivial group. 
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Figure 1.14: f(x) with Three Real Figure 1.15: f(x) with One Real 
Roots Root 


(c) Let P = (2, y) 4 O on E bea point of order three. Then 3P = O or rather 2P = —P. 


Setting the duplication formula equal to 7, we have 


x* — 2b? — 8cx + b? — dac 
4x? + daz? + dbx + 4e 


a+ — 2br? — 8cer +b? —4dac = 4a* + dar? + 4bx? + der 


= (1.6) 


3a* + dar? + 6bx? + 12cr + (4ac _ b?) = 0. 


Thus z is a root of w3 = 3a* + 4ax? + 6bx? + 12czx 4 (4ac b°) 


On the other hand, let P = (x,y) 4 O be a point on F such that 3(a2) = 0. Then 
following the sequence of equations above backwards, we have (1.6). That implies 
that 2P = P or 2P = —P. If 2P = P, then P = O, which we have excluded. Thus 
2P = —P, implying that 3P = O. Therefore, P has order three. 


(d) Recall from our derivation of the duplication formula that 7(2P) = fer —a-—2z. 
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If we set this equal to x, we have 


f(x)? 


Tf (x) —-a-2x% = &£ 
fi() = 4af(w) - Bef) _ 
4 f(x) 


f'(x)’ —4af(x) —8ef(z) = 4ef(x) 
12x f(x) +4af(x)— f(z)? = 0 
2f(x)(6x +2a)— f’(z)? = 0. 


From f(x) = x? + ax? + br +c, it follows that f” (x) = 6x + 2a. So an alternate form 
for w3 is 


b3 = 2f (a) f"(a) — fia). 


Since we are allowing complex coordinates and w3 is of degree four, we have four 
solutions. To show that they are distinct, we need to show that ~3(x) and w4(z) 
have no common roots. We know that ~3(x) = 2f(x) f’ (x) — f'(x)*, from which we 


have that 


2f (x) fF" (a) + 2f' (a) f" (a) — 2f' (a) f"(x) 
2f (x) f'"(2) 
127) 


3 (a) 


The only way for 2f (x) f”(a) — f’(x)? and 12f(x) to have a common root is if f(z) 
and f’(x) have a common root, but we are given that f(x) is non-singular. Thus the 
four roots of w3 are distinct. We showed in (c) that for P = (a,y) 4 O, if risa 
root of w3, then 3P = O. So we can conclude that if 71, x2, x3 and x4 are the four 


distinct roots of #3, then the set 


S={0,(21,4V f(21)), (22, £V f (x2), (@3, EV f (#3), (v4, EV f(@4))} 


is the complete set of points of order dividing three. To show that (x;, y;) are distinct, 
we just need to show that y; 4 0. If y; = 0, from (a), the given point would have 


order two. Thus there are eight distinct points of order three. Including ©, there 
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are nine points of order dividing 3. Thus, if we can show that S is a group, then 


S = Z3 0 Zs. 


We know that S C E(C). Let’s use the One-Step Subgroup Test. Let a and 6 be any 
two distinct points of S of order 3. It follows that a? = b? = O. Since S is abelian, 


we have that 


It follows that ab~' € S since S contains the complete set of elements of order 3. 


Therefore, S is a group. 


Note that a point on an elliptic curve is an inflection point if and only if 3P = O. 
Consider Figure 1.16 below, which shows the group operation for 2P. If P and —2P were 
to collide (or —P and 2P), we would obtain and inflection point as depicted in Figure 


1.17, for which it is clear that 3P = O. 


Figure 1.17: The Collision of P and 
—2P 


Figure 1.16: Finding 2P 


We will conclude this chapter with an important theorem that we will use later 


to find the rank of E(Q). 


33 


Theorem 1.5.2 (Nagell-Lutz [ST92, pp. 49-57]). Let 


y’ = f(t) = 2? +027 + bx +e 


be a non-singular cubic curve with integer coefficients a, b, c; and let D be the discriminant 


of the cubic polynomial f(x), 
D = —4a%c + a7b? + 18abe — 40° — 27c?. 


Let P = (x,y) be a rational point of finite order. Then x and y are integers; and either 


y =0 or else y divides D. 


34 


Chapter 2 


Curves of the Form 


y? =a + an? + ba +c 


2.1 Mordell’s Theorem 


In 1922, German mathematician Louis Mordell proved the following theorem as 


an answer to a question posed by Poincare in 1908. 


Theorem 2.1.1 (Mordell’s Theorem). Let E be a non-singular cubic curve given by an 
equation 


E:y? =a +a2*+br+ce 
where a and b are integers. Then the group of rational points E(Q) is a finitely generated 
abelian group. 


A more general case was proven in 1928 by André Weil in his dissertation. 


Theorem 2.1.2 (Mordell-Weil). Let E be an elliptic curve defined over a number field 
K. The group E(K) is a finitely generated Abelian group. 


Mordell conjectured that any non-singular projective curve of genus greater than 


1 defined over a number field K contains only finitely many K-rational points, but never 
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proved it. Gerd Faltings won a Fields Medal in 1986 for proving Mordell’s conjecture. 


By Mordell’s theorem, F(Q) is a finitely generated abelian group. From the 
Fundamental Theorem of Abelian Groups, E(Q) is isomorphic to a direct sum of infinite 


cyclic groups and finite cyclic groups of order a power of a prime. Thus 


EQ) =Z0Z@--- OZ OZ OZ, ©: OZ,ys (2.1) 
=O 


r summands 


where each p; is prime, and r is the rank of E(Q). 


We know from Mordell’s theorem that we can generate all rational points on 
an elliptic curve from just a finite set using the group law. So how do we find the set 
of generators? At this point, that question cannot always be answered. That is what 
makes the study of the group of rational points on elliptic curves so interesting, much is 
unanswered. This chapter will culminate with a theorem that provides a formula for the 
rank of E(Q). If the rank is zero, then E(Q) is finite. We will show a few examples for 
which we can actually find E(Q). 


In this chapter, we are going to consider the specific Weierstrass curve y? = 
f(x) = 23 +ax? +be. Recall that using the group law, we only need one rational point on 
our elliptic curve to generate other rational points. So we want to make the assumption 
that the polynomial f(z) has at least one rational root; this is equivalent to saying that 
the curve has at least one point of order two. Let the rational point of order two be P. 
Then P = (xo,0). We can translate the curve so that P lies at the origin. Any rational 
points found on the translated curve will still be rational after translating back since xo 


is rational. Knowing that (0,0) is a solution to E implies that c = 0. Thus, 
E: y? = f(x) = 2° + ax? + be. 


2.2 Some Useful Homomorphisms 


Before proving the theorem on the rank of E(Q), we will need a few propositions. 


These propositions and the techniques used in their proofs will help us prove the theorem 
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on the rank of E(Q). 


Proposition 2.2.1. Let E and E’ be the elliptic curves given by the equations 
E:y=a>+aa7+be and E':y? =2°4+G2? +62, 


where 
G@=-2a and b=a*—4b. 


Let T = (0,0) € E. 


(a) There is a homomorphism ¢: E — E' defined by 


ee 
LoS 2), if P= (2,y) #0,T, 
O, if P=O or P=T. 
The kernel of ¢ is {O,T}. 


(b) Applying the same process to E’ gives a map @: E' + E". The curve EB" is isomorphic 
to E via the map (x,y) > (4, yy, There is thus a homomorphism y: E' + E defined 
by 

“9 g(Z2—p oes tee wo ss 
st (2.4), PP Sang) Ors 


O,7 if P=O or P=T. 


We will not prove this proposition, but it is worth noting that in order to show 
that ¢ is a homomorphism, it is enough to show that for P,, P2, and P3 on E, if P, ® 
P2 © P3 = O, then 6(P,) ® ¢(P2) & o(P3) = O. For if this were true, then 


b(Pi © Po) = O(OP3) = OG(P3) = (Pi) ® G(P2). 


This technique for showing that a map is a homomorhism will be used again. 
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Proposition 2.2.2. Let ¢ and w be the homomorphisms described above. If P = (x,y) € 
E(Q) where E: y? = x° + ax? + bz, then (Wo )(P) = 2P. 


Proof. First, note that c= 0 for E. Thus, formulas (1.4) and (1.5) reduce to 


op — gt —2be? +b? 28 + 2ax° + 5bax4 — 5b2x? — 2ab2x — b° 
~ \ 4e3 + dav? + 4ba’ 8y3 ; 


for P = (4,y) O€ E. Now, 


(Pod)(z,y) = VI 
~ 


If we allow complex numbers, ¢: E > E’ is onto. Since the focus of this paper 


- es +0? 2° + 2ax° + 5bx4 — 5b2x? — 2ab2x — b° 
2 8y3 


Therefore, (q 0 ¢)(P) = 


is rational points, we want to know what properties ¢ has when acting on F(Q). 
Proposition 2.2.3 (Properties of ¢: E(Q) > E’(Q)). 
(i) O € o(E(Q)). 
(ii) T = (0,0) € o(E (Q)) if and only if b = a? — 4b is a perfect square. 
(iii) Let P = (z,9) € E'(Q) with = #0. Then P€ o(E(Q)) if and only if XZ is the 
square of a rational number. 
Proof. 


(i) Recall that O is considered rational and is therefore an element of E(Q). From the 
definition of ¢, we can conclude that ¢(O) = O. Thus O € o(E(Q)). 


(ii) Assume T = (0,0) € 6(E(Q)). Then there exists (x,y) € E(Q) such that 4(z,y) = 
(0,0). It follows by the definition of ¢ that v = 0. Thus y = 0. Substituting 
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y = 0 into y? = 2° + ax? + ba, we have 0 = x(x? + ax +b). Note that 2 = 0 is an 
impossibility for if 2 = 0 and y = 0, then ¢(z,y) = O, not T. So 7+ ar+b=0. 
This only has rational solutions if its discriminant is a perfect square. Thus a? — 4b 


is a perfect square. 


Conversely, if a? — 4b is a perfect square, then 0 = x° + ax? + br = a(x? + ax +b) 
has rational zeros other than zero. Hence, there exist (x,y) € E(Q) such that 
o(z,y) = (0,0) = T. 

Let P = (zy) € E’(Q) with g # 0. Assume P € 6(E(Q)). Then there exists 
(x,y) € E(Q) such that ¢(z, y) = (%,y). Thus by the definition of ¢, it follows that 


T= 32= (2). Therefore % is the square of a rational number. 


Suppose conversely that 7 = t? for t € Q*. We need to show that there exists a 
point (x,y) € E(Q) such that $(x,y) = P. Consider the points (a1, y,) and (v2, y2) 
where x1 = $ (? —at z), t= 5 (?? —-a- z), yy = xt and yo = —xXet. Since 


t £0, we have that x, and x2 are well defined. 


Let’s start by showing that (21, y1) and (x2, y2) are contained in F(Q). First, we 


have that 
l/ 2 gy Les ] 
L1X2 5 ( a+ ) 5 ( a i 
1 f 79 2 
~ 4 (( ae 
1 red 
=| (c ap —= ) 
ae gE? — 2ax? + a?E — y 
pare £ 
_ 1 (a8 — 20x? + a?a — (? — 20%? + a?& — 4bz) 
A E 
b. 


2 
Also, it is easy to see that 71 +22 = t?—a. Thus, x;+ 2 = (#) —a for i = {1, 2}, 


vy 


which upon multiplication by x? yields x? + ax? + ba; = y?. Hence (a1, y1) and 
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(x2, y2) are contained in E(Q). 


Let’s show that ¢(21, 41) = ¢(X2, y2) = (X,Y). We will start with ¢(21,y1). From 


y1 = x1t, we have that t = a Thus 


Now, notice that 71 — rg = y. It follows that 


yi (xz — b) = xit(x? — 2122) 
xy xy 
= t(x1 _— £2) 
aa 
t 
= ¥%. 


Therefore, ¢(21,y1) = (Z,y). A similar argument will show that ¢(x2, y2) = (%,9) 


as well. 


We will now set out to prove that for the map 7: E’ — E, the index |£(Q) ; 
w(E! (2))| < 2'+! where t is the number of distinct prime factors of b. In the process, 


we will introduce a useful map a@ and describe some of its properties. This map will be 


used later in our proof of a formula for the rank of E(Q). 


Let Q* be the multiplicative group of nonzero rational numbers, and let Q*? be 
the subgroup of the squares of the elements of Q*. Also, let a: E(Q) > Q*/Q? be the 
map defined by 
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x (mod Q*?), if P=(z2,y) 4O,T, 
a(P) = 41 (mod Q*?), if P=O, 
b (mod Q*?), if P=T. 


Proposition 2.2.4. 


(a) The map a: E(Q) > Q*/Q* described above is a homomorphism. 


(b) The kernel of a is the image U(E’(Q)). Hence a induces a one-to-one homomorphism 


EQ) _,@ 
VE@) " o 


(c) Let pi,p2,...,pt be the distinct primes dividing b. Then the image of a is contained 
in the subgroup of Q*/Q*? consisting of the elements 


EL EQ , t 


Epi ps? +++ py: 


na 
| 


each €; equals 0 or 1}. 
(d) The index |£(Q) ; 4(E(Q))| is at most 2°", 


Proof. 


(a) Let’s use a similar strategy to the one outlined for the proof of Proposition 3.1.3. 
That is, we will show that a sends inverses to inverses and that if P; 6 Po @ P3 = O, 
then a(P,)a(P2)a(P3) = 1 (mod Q*?). For then a(P; @ Pr) = a(—P3) = a(P3)7! = 
a(P,)a(P2) (mod Q**). 


Let P = (a, y) € E(Q). Then 
a(—P) = a(z,-y)=r#= = a(x,y)~! = a(P)~* (mod Q*?). 


We used the fact that if n? = 1 (mod Q*), then n = 4 (mod Q*”). 


wea 


Al 


Now, let P, = (21, y1), Po = (X2,y2) and Ps; = (23, y3) be elements of E(Q). We 
know that if P; 6 Po @ P3 = O, then P,, Py and P3 are colinear. Let y= mz +v be 
the line passing through them. Since these points are the intersections of y = ma+v 


with E: y? = «3 + ax? + ba, we have 


yo = w+ax?+be 

(ma+v)* = «#3 +axz?+be 

mae? +%muetu? = «3 +ax?+be 
0 = a+ (a—m?)a? + (b— 2mv)x — v?. (222) 


We also know that since P,, Pz and P3 are roots of (2.2), it follows that 


a? + (a —m?)x? + (b— 2mv)x — v? 


= (x —21)(x — %2)(x — x3) 


2 
= x£° — (a +%24+ 43)a° + (x1 x2 + ©1034 LQx3)e — 112973. 


If we equate the final terms, then 2127273 = v? € Q*?. Thus 


a(P,)a(P2)a(P3) = 212273 = j-=1 (mod Q*). 


So we have completed the proof of (a) if the three points given are not O or T. We 


will leave it to the reader to verify the other cases. 


The kernel of a is all of the elements of E(Q) that map to 1 modulo Q*?. From the 
definition of a, we can see that these are the elements O, T if b is a perfect square, and 
the elements of E(Q) whose x-coordinates are perfect squares. If we apply Proposi- 
tion 2.2.3 to w instead of @, it is clear that the image w(E'(Q)) is exactly the points 
mentioned above. Thus the kernel of a is the image u(E’(Q)). 


Since E(Q) and Q*/Q*? are both groups and we showed in (a) that a is a homomor- 


NS 
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phism, by the first isomorphism theorem 


im a © E(Q)/ker a = E(Q)/¥(E'(Q)). 


Thus @ induces a one-to-one homomorphism 


EQ) _,@ 
vE@) " o 


If we want to know what the image of a looks like, we just need to analyze the x- 
coordinates of points in E(Q). It turns out that if P = (7,y) is on E, then x = 4 
and y = 25 for integers m, n and e, where e > 0 and gcd(m,e) = ged(n,e) = 1. (For 
a derivation of these formulas, see Silverman-Tate pg. 68-69.) Substituting 2 and y 


into the equation for F’ gives 


(3) = (3) +«(3) +0) 


n? = m?+am’e? +bmet 


no = m(m? + ame? + be) : 


If m and m? + ame? + be’ are relatively prime, then each of them would be a positive 
or negative square. Hence x = a would be a positive or negative square. Thus 
a(P) =1 (mod Q*?), and 1 € {+p5!p5? ----p;*} where the p; are as described above. 


If m and m? + ame? + be* are not relatively prime, then let 


d = gcd(m, m? + ame? + be’). 


Then d divides m and be*. We know that m and e are relatively prime, thus d divides 
b. Now, the primes that divide m but do not divide b must be of even power. The 


primes dividing m and 6 can be of either even or odd power. Thus 


m = +(integer)? Dy Da hae 


where each ¢; is either 0 or 1 and py,..., p; are the distinct primes dividing b. There- 


SS 
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fore, 


m Ok 
OP) S7 = a= +p%1p5? --- pf* (mod Q*). 


If x = 0, then the method above fails. However, if 2 = 0, then y = 0 since E: y? = 


x? + ax? + bx. Now a(T) = b (mod Q*?) and b = +pj!p5? ---p;*. Thus the image of 


a is is contained in the subgroup of Q*/Q*? consisting of the elements 


E1 EQ 


B= {tpj'p5?---p;' : each e; equals 0 or 1}. 


Let’s find the order of the subgroup from (c). Since each power ¢; can be either 0 
or 1, there are two choices for each p;'. Thus |{p;'p5? --- pt }| = 2°. Since all of the 
elements of the subgroup can be either positive or negative, there are 2(2') = 2*+1 


elements. 


We know from (b) that im a ~ E(Q)/w(E’(Q)) and from (c) that im a C B. 
Therefore, the index £(Q) :¥(E'(Q)| < 2°77. 


2.3. Modules and Exact Sequences 


At this point, we will take some time to discuss modules over a ring. We will 


use some module theory in future proofs. 


Definition 2.3.1. Let R be a commutative ring. An R-module is an additive abelian 


group A together with a function R x A > A (the image of (r, a) being denoted ra) such 
that for allr,s € Rand a,be€ A: 


(i) r(a+b)=ra+rb 


(ii) (r+ s)a=ra+ sa 


(iii) r(sa) = (rs)a. 


If R has an identity element 1p and 
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(iv) lpa =a for alla e€ A, 


then A is said to be a unitary R-module. If R is a field, then a unitary R-module is called 


a vector space. 


It is clear from the definition above that every additive abelian group G is a 


unitary Z-module, specifically our group (F(Q),®). 


Definition 2.3.2. Let A and B be modules over a ring R. A function f: A—> B is an 
R-module homomorphism provided that for alla,c € A andr € R: 


flate)=fla)+fle) and f(ra)=rf(a). 


Definition 2.3.3. A pair of module homomorphisms, A JB 2 C,, is said to be exact 


at B provided im f=ker g. A finite sequence of module homomorphisms, Ag Ji Ay ELA 


Ay 2, tee pain An_-1 BuR An, is exact provided im f; = ker fj41 for 1 = 1,2,...,n—1. 
An infinite sequence of module homomorphisms , -- - get, Aj-1 ze A; st, Ajst ELE tee 


is exact provided im f; = ker f;41 for all 7 € Z. 


Definition 2.3.4. If f: A > B isa module homomorphism, then A/ker f [resp. B/im f] 


is called the coimage [resp. cokernel] of f and is denoted coim f [resp. coker f]. 


Note that from the definitions above, the following claims are true. The se- 
quence 0 > A 4, B is an exact sequence if and only if f is a module monomorphism. 
Similarly, B 4, C + 0 is exact if and only if g is a module epimorphism. If A ce BSC 
is exact, then gf = 0 since im f = ker g. Also, if A J Bh C' + 0 is exact, then 
coker f = B/im f = B/ker g = coimg = C. 


Definition 2.3.5. A commutative diagram is a diagram of objects (also known as ver- 
tices) and morphisms (also known as arrows or edges) such that all directed paths in the 


diagram with the same start and endpoints lead to the same result by composition. 
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For example, the diagram below would be commutative if ho f=kog. 


C D 


Lemma 2.3.1 (Snake Lemma [Lan02, p. 100]). Consider the commutative diagram of 


Abelian groups and group homomorphisms below: 


A ae: Lee 6: > 0 


a 


/ 
0 a ae 


where rows are exact sequences. Then there is an exact sequence relating the kernels and 


cokernels of a, 8 andy: 


ker a > ker 8 — ker y ~, coker a —> coker B — coker y. 


In order to follow the maps from the statement above, one would have to wind 


through the commutative diagram like a snake, as depicted below, giving the lemma its 


name. 


0 ———» ker f ——» ker a ——» ker 8 —» ker y 


6 
Vv f Vv g Vv 
A > B > C > 0 
a B Y 
Vv ie Vv g’ Vv 
0 > A’ > B! > Oo! 
Vv Vv Vv 


———& coker a —» coker 8 —» coker y ———» coker g ————> 0 
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We can actually extend the Snake Lemma as below. 


Lemma 2.3.2 (Extended Snake Lemma). Under the same assumptions as the Snake 


Lemma, the sequence 
0 > ker f > kera > ker B > ker y . coker a 3 coker 3 — coker y + cokerg 0 (x) 


is exact. 


Proof. By the Snake Lemma, we know that ker a > ker 6 — ker y *, coker a 3 
coker 8 — coker y is exact. It remains to show that 0 — ker f — ker a and 
coker y — coker g — 0 are exact. Recall that if the map from ker f to ker a is a 
module monomorphism, then 0 > ker f — ker a is exact. Let’s show that ker f C ker a, 


then the inclusion map will be injective. Let a € ker f. By commutativity, 


f'a(a) = Bf(a) = B(f(a)) = B(0) =0. 


It follows that a(a) = 0 since f’ is a module monomorphism from the exactness of the 


second row, implying that a € ker a. 


To prove that coker y — coker g — 0 is exact, we just need to show that the 
map taking coker y to coker g is an epimorphism. Since A £,B 40-4 0is exact, g is 


an epimorphism. It follows that coker g = C/im g = 0. Thus, the map taking coker y to 


coker g is onto. Therefore, (*) is exact. 


Lemma 2.3.3. If0 > A, ~ Ag > Az 7... > An > O is an exact sequence such that 


|A;| < 00, then 


|A,||A3]...|An| = |Ag||A4|..- |An—i| ifn is odd 


|Ag||Ag]...|An| = |A,||A3]... |An—1| ifn as even. 


AT 


Proof. Let fn: An — An41. We are given that A;_1 >~ A; > Aj41 > Aj+e is exact. 
Then 


coker eal = A;/im fp = A; /ker fi = im fi = ker fiat. (2.3) 


Since 0 > Ay ne Ag is an exact sequence, fy, is injective, implying that coker f; = 


Ao/im f; = A2/A,. By Lagrange’s Theorem, |coker f| = |A2|/|A1|, or equivalently 
|A2| = |Aj;||coker fi. (2.4) 


Consider the sequence 0 — coker f;-1 — Aj+1 — coker f; — 0. By (2.3) above, 
coker f;_1 = ker f;41. So clearly the map from coker f;_; to Aj11 is injective. Also, since 
coker f; = Aj4i/im fi, the map A;;1 — coker f; is surjective. Therefore, the sequence 


0 > coker f;-1 > Aj+1 — coker f; > 0 is exact. Then 
coker f; = Aj41/im fj = Aj4i/ker fi41 = Aj41/coker f,_1. 
Therefore, |coker f;| = |Aj+i|/|coker f;-1|, or equivalently 
|coker fi-1]| = |Aj+1|/|coker f;|. (2.5) 


Now consider the sequence 0 — coker fn—3 — An-1 —% An — 0. By (2.3), 
coker fn—3 = ker fn_1. So if the injective map 7 takes ker f,_1 to An—1 and f_1: 
An-1 > An, then imi = ker f,-1. Thus the sequence is exact. So A, = An_1/ker fn—1 = 
Ay_-1/coker f,—3. Which yields the equality 


|coker fn—3| = |An—1|/|An|- (2.6) 


So for even n, by (2.4) we have |A9| = |.Ai||coker aj|. 
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Inductively using (2.5), we have 


| Ag| = |A,||coker fil 
|Ag||coker fo] = |Ai||As3| 
|Ag||A4] = |Aj||A3||coker fs| 
|Ag||A4|... |An—a| = |A,||A3|...|An—3||coker f,—3]. 
Using (2.6), we have 
|Ag||Aa|...|An-2] = |Ai|[A3]..-|An—sl|An—1//|Anl- 


| A2|] Aa]. - -|An—2||An| |A1||A3| -- - |An—s||An—il- 


A similar result is produced if n is odd. 


Theorem 2.3.4. If A, B and C are abelian groups and f: A > B and g:B > C are 
group homomorphisms with ker f, ker g, coker f and coker g finite, then ker(go f) and 
coker(go f) are finite and 


|coker(f og)| _ |coker f||coker g| 
|ker(f 0 g)| [ker f||ker g| 


Proof. Consider the following diagram of Abelian groups and group homomorphisms. 


i 
A > B > coker f ————— 0 
gof g 7 
0 eee > 0 


It is clear that the diagram commutes, the rows are exact and ker h = coker f. By the 


Extended Snake Lemma, 


0 > ker f > ker(go f) > ker g — coker f + coker(g 0 f) — coker g > 0 (2.7) 


AQ 


is an exact sequence. Let a and ( be group homorphisms such that a: ker f > ker(go f) 


and (: ker(go f) > ker g. By the first isomorphism theorem, 
ker(g 0 f)/ker 8 = im B. (2.8) 


From the exactness of (2.7), ker 8 = ima. Since a: ker f > ker(g 0 f) and we are given 
that ker f is finite, im a is finite. Also, since 6: ker(go f) > ker g, im B C ker g. We 
are given that ker g is finite, thus im ( is finite as well. Therefore, from (2.8), we can 
see that ker(go f) is finite. By a similar argument, it can be shown that coker(go f) is 


finite. 


Since we are given that ker f, ker g, coker f and coker g are finite and we 


showed that ker(go f) and coker(go f) are finite as well, by Lemma 2.3.3, 
|ker f||ker g||coker(g o f)| = |ker(g 0 f)||coker f||coker g]. 


Thus, 
|coker(go f)| _ |coker f||coker g| 


|ker(gof)| — |ker f||ker g| 


2.4 The Rank of E(Q) 


Before we begin our proof on the rank of E(Q), let us examine the structure of 


some key sets in our proof. Recall that 
E(Q) =ZOZO--- OZ OZ: OZ, ©: OZyys (2.9) 
Ve SS 
r summands 


where each p; is prime, and r is the rank of E(Q). 
Now, 2E(Q) is important since we know by Proposition 2.2.2 that wod: E(Q) > 
E(Q) results in multiplication by two. Hence 


im(w 0 ¢) = 2E(Q) = 22 @ 22. ©--- © 2Z. © Amn. © 2D 9 © --- © Wyps. 
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So the quotient group 


Z_2Z Z  Zyrr Dyes Lie 
= ‘e - ote 1 2 Baie ve . 
(Q)/ (Q) YA ® 27, ® @ 27, _ 22,1 2 2Z,,¥2 22,05 


(2.10) 


We will also be interested in what the elements in the kernel of wo@ look like. So 
let E(Q)2 be the 2-torsion subgroup of F(Q) (2.e. E(Q)2 is the subgroup of all Q € E(Q) 
such that 2Q = O). By (2.9), there exist generators, say P,, Po,..., Pr, Q1,Q2a,...,Qs € 
E(Q) such that every point P € E(Q) can be written as 


P= mP, ®-:-On-P, 6m1Q1 © --* @BMsQs 


where each integer n; is uniquely determined by P and the integers m; are determined 


modulo p;’ : 


In order to find |F(Q) |, let us examine when 2(n,P, +---+n,P, +m1Qi 4 
+++ +msQs) = O. This will only happen if n; = 0 for each i and 2m; = 0 (mod p”’) for 
each j. If p is odd, 2m = 0 (mod p”) if an only if m = 0 (mod p’). If p = 2, then 2m = 0 


vas) 


(mod p”) if m = 0 (mod p or m = 0 (mod p”). So for each term n;P;, we have one 


choice, nj; = 0. For each term mj;Qj;, we have one choice if p is odd and two choices if 


p= 2. Thus 
|E(Q)a| = 2% (2.11) 
where N is the number of p; = 2. 


Now we are ready to prove a theorem regarding the rank of E(Q). 


Theorem 2.4.1. Let ¢: E(Q) > E'(Q), v: E'(Q — E(Q), a: E(Q) — Q/Q™, and 
a’: E'(Q) > Q*/Q*? be group homorphisms as previously defined. Then 


|im a| - |im a’| 


=F 
4 


where r is the rank of E(Q). 
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Proof. From (2.10), we know that 


Z 
Since Z/2Z = Zag, it has order 2. For each —_. we have 


Thus 
|E(Q)/2E(Q)| = 2" - 2%. 


Since wo ¢ is multiplication by two, from the definition of cokernel and equation (2.11), 


we know that 


|coker (xb 0 ¢)| = |E(Q)/2E(Q)| = 2” -2% = 2" - |E(Q)I. 


This gives us 
lcoker(w od) _ 
Se Se 
|E(Q)2| 
Since E'(Q)z is defined to be all Q € E(Q) such that 2Q = O, and we know that wo @ 


results in multiplication by two, it follows that E(Q)2 = ker(w o #), and therefore 


|coker (© #) 
[ker(w © 9) 


Which, by Theorem 2.3.4, gives us 


a5 


|coker w| |coker ¢| 
ae 2.12 
Iker #| [ker 6 a 


From the defintion of ¢, the ker ¢ = {O,T}, implying that |ker ¢| = 2. Similarly, 
|ker | = 2. Also, from Proposition 2.2.4 part b, ker a = im W. So by the definition of 


cokernel and the first isomorphism theorem, 


EQ) _ EQ) x, 


kk = = 
po imw  kera 


ma. 
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Likewise, im a’ © coker ¢. Therefore, from equation (2.12), we have 


|im a| - jim a’| 


=2.. 2.13 
f (2.13) 


In order to compute the rank of E(Q) for a given curve, we can see by (2.13) 
that we will need to find the cardinality of im a and im a’. Recall from the proof of 
Proposition 2.2.4 part c that if (x,y) is a rational point on a Weierstrass elliptic curve, 
then 


m 
Z=—+4 and y=Za 
€ 


where e, m,n € Z, e > 0 and any two of e, m and n are relatively prime. The examples we 
are going to consider below contain curves of the form E: y? = x® + ba. If we substitute 


x and y into y? = x? + bx and clear the denominators, we have 


n? = m(m? + be’). (2.14) 


Let 6; = +gcd(m, b) where the sign of b; is the same as that of m. Then there 
exist integers m, and b such that m = bjm, and b = 6,b2 with ged(mj, b2) = 1. Since 


m and 6; have the same sign, m; > 0. If we substitute these values into (2.14), we have 
n? = b?m4(bym? + bee?) (2:15) 


We can conclude that b? | n?, implying that b; | n. So there exists an integer n, such 


that n = bjn ;. Thus (2.15) becomes 
ni = m1(bym? + bee"). (2.16) 


Since gcd(m1, b2) = ged(m4,e) = 1, we have that m, and bjm?+ bee? are relatively prime. 


It follows that m, and bm? + bye* are perfect squares. Let 


m,= MM? and bym? + bee* = N?, 
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where n, = MN. Substituting m, into N? yields 
N? = bi M* + boe?. 


So any point (x,y) € E(Q) with y 4 0 can be written as 


_ bM? 


b, MN 
e? ; 


e? 


and y= 


(2.17) 


Recall that for any (x,y) other than O and T, we have that a(z,y) = x (mod 
Q*?). It follows that im a is contained in the set of divisors of b. So we only have a finite 
number of possibilities to check. In the examples that follow, we will find the rank of 
E(Q) by writing all possible equations N? = b; M4 + bge*, where b; and by are integers 
such that b = b1b2. For each equation with a solution (M, N,e) that satisfies the condi- 
tions above, we will obtain an element in im a. Note that if m = 0, the above method 
does not apply. However, if m = 0, then (2, y) = T and a(T) = b. An obvious drawback 
to this method is finding solutions (M,N,e) to N* = b;M* + bye*; there is no way of 


knowing if a solution even exists. 


There are many unanswered questions regarding the rank of elliptic curves. For 
example, there is no known algorithm to find the rational points on elliptic curves over 
Q. There is also no known algorithm for computing the rank of E(Q). Here we will do a 
couple of examples of situations for which we are lucky enough to answer one or both of 


the preceding questions by using the method outlined above. 


Example 2.4.1. Find the rank of the group of rational points on the curve E: y? = x?—a, 
and if possible, find E(Q) and E’(Q). 


Solution. The only factors of b= —1 are +1. Since a(O) = 1 and a(T) =b=~—-1, 


im a = {+1 (mod Q**)}. 


Thus |im a| = 2. 
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If E: y? = 2? — 2, then E’: y? = 2? + 4a. The factors of b = 4 are +1, +2 and 


+4, Since +4 = +1 (mod Q*), we only have to consider the following equations: 


(i) N? = M* + 4e* 
(ii) N? = —M* — 4e? 
(iii) N? =2M* + 2e4 
(iv) N? = —2M* — 2e%. 


Clearly, for (ii) and (iv), the right sides of the equations are negative, while the 
left sides are positive, so they have no solutions. Equation (i) has solution (IW, N,e) = 
(1,1,0), which by (2.17), corresponds to the point at infinity, but of course 1 € a’/(E(Q)). 
With very little work, one can see that (1,2,1) is a solution to (iii), for which b; = 2. So 
im a’ = {1,2 (mod Q*)}, giving us |im a’| = 2. Thus, by (2.13), we have that the rank 
of E(Q) is zero, from which we can conclude that E(Q) is finite. Let’s proceed to find 
E(Q) and E'(Q). 


Since E£(Q) is finite, its elements are of finite order, so Theorem 1.5.2 applies. 


It follows that x and y are integers, and either y = 0 or y divides D, which in our case is 


3 


4. To find the points for which y = 0, we need to solve 0 = x” — x, which has solutions 0 


and +1. Thus (0,0) and (+1,0) are in E(Q). To find the points for which y divides D, 


we would need to check all equations F with y equal to +1, +2 or +4. After some work, 


one will find no other integer solutions. Thus, 
E(Q) = {O, (0, 0), (1, 0), (=I; 0)}. 


Similarly, to find E’(Q), if y = 0, then we can solve 0 = x + 4a, whose only integer 
solution is 0. Hence, (0,0) € E’(Q). Next we need to check all equations E’ for which y 
is a divisor of D = —256, so y = +1, +2, +4, +8, +16, +32, +64, +128, +256. After some 
work, one will find x* + 42 = 16 has an integer solution of 2. Thus (2,4) and (2, —4) are 
also E’(Q). So 


E'(Q) = 10; (0, 0), (2, 4), (2, —4)}. 
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Example 2.4.2. Find the rank of y? = #° — 172. 


Solution. The only factors of -17 are +1 and +17. So we only need to look at (M, N,e) 
satisfying 


(i) N? = M* — 17e4 
(ii) N? = —M* + 17e4 
(iii) N? = 17M* — e* 
(iv) N? = —17M?# + et. 


Since equations (i) and (ii) are the same as (iv) and (iii), respectively, it is 
enough to consider (i) and (ii). Equation (i) has the trivial solution (1,1,0), implying 
that (iv) has the solution (0,1,1). Thus 1 and -17 are are contained in the image of 
a. Equation (ii) has the solution (1,4, 1), from which we can conclude that (iii) has the 


solution (1,4,1) as well. So -1 and 17 are also contained in the image of a. Thus, 


minor =A 1 


17 (mod Q*’) } 


which has order 4. 


Now let’s consider BE’: y? = 2° + 68a. The only factors of 68 are +1, +2, 
4, £17, +34 and +68. Since +4 = +1 (mod Q*?) and +68 = +17 (mod Q*), we can 


narrow our list of factors to +1, 


i) 


, £17 and +34. So we have the following equations 


to consider: 

(i) N? = M4 +4 686e4 
(ii) N? = —M* — 68e+ 
(iii) N? = 2m4 + 34e4 
(iv) N* = —2M* — 34e* 
(v) N?2 = 17m? + 4e? 


(vi) N? = —17M*4 — 4e* 
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(vii) N? = 34m* + 2e+ 
(viii) N? = —34M4 — 2e%. 


Clearly, (ii), (iv), (vi) and (viii) have no solutions. Also, (iii) and (vii) are the 
same. So we only have to consider (i), (iii) and (v). Equation (i) has the trivial solution 
(1, 1,0). Equations (iii) and (vii) have the solution (1,6, 1). Finally, equation (v) has the 
solution (1,9,2). Thus, 

im a! = {1,2,17,34 (mod Q*’)} 


which has order 4. So by (2.13), the rank of E(Q) is 2. 


For curves of the form EF: y? = «° + bx, the rank of E(Q) for various values of 


b is given below for reference [Hus, p. 37]. 
Rank b 
0 1, 2, 4, 6, 7, 10, 11, 12, 22 
ee ee ee Be es ES 
1 3, 5, 8, 9, 18, 15, 18, 19, 20 
eee 26 Tal, 1D cid a5 200) 
2 14, 33, 34, 39, 46 
-17, -56, -65, -77 
3 82 


Table 2.1: Values of the rank r for E: y? = 2° + br 


One of the many unanswered questions regarding the rank of elliptic curves is 
the Birch and Swinnerton-Dyer conjecture, a Millennium Prize Problem. Bryan Birch 
and Peter Swinnerton-Dyer, with the help of computer computation, posed the following 


conjecture in the 1960’s: 


Let E be an elliptic curve of a number field K. Let L(E,s) be 
defined as 


L(B,s) = || Lp(E, s)* 
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where, for a given prime p, 


(1—app-*+p'~*’), ifptN 
L,(E, 8) = (1 — app~*), if p || N 
1, if p? | N 


where, in the case of good reduction, ap is p + 1—(number of 


points of F mod p), and in the case of multiplicative reduction, 


ay is +1 depending on whether FE has split or non-split multi- 
plicative reduction at p. 

The rank of the abelian group E'(K) of points of F is the order of 
the zero of L(E,s) at s = 1, and the first non-zero coefficient in 
the Taylor expansion of L(E,s) at s = 1 is given by more refined 


arithmetic data attached to F over K. 


Currently, the conjecture has only been proven true in special cases, and nothing 


has been proven for curves with rank greater than 1. 
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Chapter 3 


Curves of the Form y? = 2° +c 


In this chapter, we will discuss how the results in Chapter 2 will differ if we 
change our curve from E: y? = 2°? + az? +ba+c to E: y? = 2° +c, where c € Q*. 
Much of what we will do will parallel Chapter 2, however, there are differences. The 
homomorphisms ¢ and wy will change. As a consequence, the composition (wo ¢) (P) will 
change from 2P to 3P, giving us a new formula for the rank of E. Also, you may recall 
that the map @ and our method for computing the rank of specific curves relied heavily 
on b. So how will the map a change, and how will we compute the rank for our new curve 


for which b = 0? 


3.1 Homomorphisms for the New Curve 


Theorem 3.1.1. Let E be an elliptic curve of the form E: y? = x? +c, cE Q. 


(i) The points (0,+,/c) are inflection points and have order 3 on E. 
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(ii) For P = (x,y) #O € E(Q), 


-2xye Vay-3V)\ 
O ify=—vVJe 


and 


dale -Velyt3Ve)\ 
(2%, AoE ) ify # Ve, 
O ify =e. 


P@(0,-Vc) = 


(iii) Let (21, y1) = (x,y) @ (0, Vc) and (x2, ye) = (x,y) © (0, -Vc). Then 


3 3 
x?’ + 4c — 9c 
(ota tinny tun tan) = ( 7) fe d 


) FEyr Ge, 


73 


and this is a rational point of the elliptic curve E!: y? = x? — 27c. 


Proof. 


(i) Recall that a point on £ is an inflection point if and only if 3P = O. Thus, it 


suffices to show that (0,+./c) have order 3 on E. For P = (0,+./c) € E, since a 
and b both equal zero, by formulas (1.4) and (1.5), 


(0, Vc) . 


Thus, 2P = —P, implying that 3P = O. 


Recall that given two points (x1, 4) and (x2, y2), the formula 73 = m? — x2 — 21 


gives the z-coordinate of the point (x3, y3) where (3, y3) = (21, y1) ® (2, y2) and 


m is the slope of the line that passes through the given points. Considering the case 


(iii) 
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of (x,y) (0, /c) where (x, y) 4 (0, +./c) we have the following: 


iat (Os 


ie 
_ yr -w/ete-2? 
ae 
_ (+c) -24y/e+e-2° 
me 
_ 2¢—2y/e 
ye 
_ —2ve(y — ve) 
Go 
_ —2xrVJely — Ve) 
a 
_ —2xrV/ely — Ve) 
Voge 
_ —2a/c 
OGRA 


Substituting this result into y? = 2° +c to get the y-coordinate, we have that (x, y)® 
(0, ./c) = (2s uo). Using the same process, it can be shown that (x, y)® 


ytve’ — ytve 
(0,—ye) = (Zev, ut w/)) for (0,y) # (0, Ve). If (0,4) = (0, Ve), we showed 
in part (i) using the duplication formula that 2(0,/c) = (0,—./c). Substituting 


(0, /c) into (s248 velucty ) gives is the desired result of (0,—./c). The same is 


ytVe? — -ytve 
true for (x,y) = (0,-c). Finally, it is clear that (0,+/c)@(0, Vc) = O since the 


two points are additive inverses and elliptic curves are symmetric about the x-axis. 


Since (x1, y1) = (@, y) © (0, Vc) and (22, y2) = (x, y) 6 (0, —Vc), we know from (ii) 
that 


(an) = (Se von a 


ve, vay = 8 jae), 
y+vV/c yY+vV/c 


y-Ve y-ve 
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Hence, we have the following result: 


(c+a1+22,y+y1 + y2) 


c+ (BRE) + (B28) n+ (ce) + (S82) 
x(y?~c) = wey aV/ely4 Eve) y(y?—c)+Vely? ee ve(y?+ niuverso ) 


8 
—~ 
KJ 

N 
a4 

w 

is) 
NS 

Ae 

Q 
Kad 


(x 2a +3c S 


x3 4c yi Bey se 
x 


To simplify the result above, we used the fact that if (a, y) € E, then y? = 2? +c. 


It remains to show that (a + x, + 2,y + yi + y2) is a rational point of the elliptic 


curve E’: y? = x3 — 27c. We know that c € Q and (z,y) € E(Q). It follows that 
oa y—9cy 
x 


a ) is a rational point since the rational numbers are a field and are 


therefore closed under the operations presented above. 


Now let’s show that (Sh a*+4e y we) is on the curve y? = x? — 27c. 


LHS: 


( - ay yy’ = 18cy* + 81c?y? 


a? ae 
= y® + 9ey* + 27c7y? + 273 — 27cx® 
= 6 
a y® + 9ey* + 277 y? + 273 — 27ec(y? — c)? 
a 6 
x 


y® — 18cy* + 81c7y? 
76 
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Therefore, 


3 3 
xv’? +4e y?’ — Icy 
(4a taa.y tan + an) = ( = 


) Ma OAs, 
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and is a rational point of the elliptic curve E’: y? = x? — 27c. 


In Chapter 2, we discovered the homomorphisms ¢: E > E’ and y: E’ > E. 
There exist similar homomorphisms for curves of the form y? = 2° +c. We want to show 
that the formula in part (iii) above is the desired map ¢, but before we can prove that is 


true, we will need an important theorem. 


Theorem 3.1.2 (Vélu’s Theorem [V71]). Let E and E’ be elliptic curves of the form 
y? =a? +bre+c. Let d: E> E’ be defined as 


oP)=(e+ YO (e(PSQ)-2Q), 9+ DO WlPeQ)-vQ)) 


QeK—{O} Qek—{O} 


where K is the kernel of ¢ and P = (a,y) ¢ F. If K is of odd order, then @ is a 


homomorphism. 
Now, let us prove that the formula from part (iii) above is indeed a homorphism. 


Proposition 3.1.3. Let E and E’ be the elliptic curves given by the equations 
E:y=a? +e and E’:y?=2°4+@ 


where 


€= —27c. 


Let T, = (0, ./c) and T, = (0,-c) € E. 


(a) There is a homomorphism $: E —- E' defined by 


= (“3% 4), if P= (2,y) #O,T1,Te 
O,7 Pe =O, 1,1: 


The kernel of ¢ is {O,T;, To}. 
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(b) Applying the same process to E’ gives a map @: E' + E". The curve E" is isomorphic 
to E via the map (x,y) > (Z, x). There is thus a homomorphism w: E! > E defined 
by 


my tgs Bg fees, ? Pets 2 Eee, BS 
_ (See, | » fP=(%,9) F0,T1,T2 


Proof. From formula (1.3), we have that 


029 =f @ 
pen=(* ICING aa ewer 
xv x 
and 
2c +2 —¢ 4c 3 
Peh= ( ves, Ve — _ ver). 


Since ker ¢ has odd order and E is of the form y? = x? + Ox + c, we can use Vélu’s 


theorem to compute the homomorphism ¢. Thus, 


2 2 


r+) (2(P ®t) -2(T)), y+ ) (W(P eT) - WT) 


i=l i=l 


oP) = 


( 
= (« x(P T)) a(P T2),y y(P T)) ve | y(P Tr) + ve) 
WP OT) +y(P © T)) 


2e—- PMU, 2c + 2./cy ie eve — 4ey + 3/cey?  —e/e- 4cy — oe 
Y 3 3 
x L 


ye 


r+a(P@T)+2(P@To),yt+ 

(0+ 

_ Cae 2) 
(S 


z+4e (y? —c)y — 8cy 
9 a3 


z+4e y? —9cy 
= a 


It can be easily shown that w is indeed a homomorphism as well. 


Proposition 3.1.4. Let ¢ and wy be the homomorphisms described above. If P = (x,y) € 
E(Q) where E: y* = 2° +c force @ then (yo ¢)(P) = 3P. 


Proof. Let’s start by considering P #4 O,T; or Ty. Note that a and 6 are both zero for 
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E. Thus, formulas (1.4) and (1.5) reduce to 


A 6 3. 92 
oP = x oo + 20cxr 8c 
Ay? 8y? 


By (1.3) we have that 


2®+4+20cx3 —8c? 
age 4_8 
a2P@P) = ( ae we 


w4—8cx 
“hz 


® +20ca? —8c? —8y" 
== eae a oe xt — 8cx 


a4 —8cx—Axy? Ay2 
Ay? y 


(S 20ex3 — 8c? edly at — 8cx 
a 


2y(a* — 8cx — 4x(x? + c)) Ay? 
72° + dex? — 16c? ) x? — 8cxr 


2y(—3x4 — 12cx) 2 


7x® + dex? — 16c*)? — (x* — 8cex)(—32* — 12cr)? — x(4y”)(—3x4 — 12cx)? 

Ay? (—3a4 — 12ca)? 

A(10x!? — 142° + 168c7r® + 256c3x? + 64c* — y?(9x° + 72cxr® + 144c*z3)) 
36x7y? (a3 + 4c)? 

A((x3 + c)(10x° — 24cx® + 192c?x? + 64c3) — y?(9x° + 72cxr® + 144c?x3)) 
36x2y? (a + 4c)? 

A(y? (10x — 24cx® + 192c?x? + 64c3) — y?(9x° + 72cax® + 144c?2x3)) 

36x7y? (a> + 4c)? 
x? — 96cx® + 48c?x3 + 64c3 
9x? (a3 + 4c)? 


From (1.3) and the computations above, 


y(2P ® P) 2y(—3a4—12cx) 9x? (@3+4c)? 2y(—324—12cx) 


( —Ta® +4cx3—16c? ) (Settee x>+64c3 ) ( —72® +4cx3—16c? ) z| 

(72° —4cx3 4+16c?) (2° —96cx®+48c?x3 4+64c3) 2y? (—3a4—12cx)+72" —4cx4 +1607 2 
— 1822y(—3a4—12cx) (x3 +4c)? 2y(—3a4—12cx) 
7x5 676cx!? +736c7x9 —128c3 x6 +512c4+x3 +1024c5— 9a? (x3 +4c)? (x? —34cx4 —8c7 2) 

18x? y(—324—12cx) (x3 +4c)? 
2(29 +228cr+48c?43 4+64c3)(23+c) (x3 —8c) 
1822y(—3a4—12cxr) (x3 44c)? 
y(x3—8c) (29 +228cr°+48c7.73 4+64c3 Ms 
2723 (x3 +4c)3 
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Thus, 


3p = x? — 96cx® + 48c?x3 + 64c? y(ax? — 8c)(x9 + 228cx® + 48c?x3 + 643) 
7 9x?(x3 + 4c)? A 2723 (43 + 4c)$ 


Now, 
(Pod)(z,y) = Y(ola,y)) 
~ (3, a 


3 
3 3 3_9¢ 3_9¢ 
(2sePeacamy (W582) aca 282) 


344 2 ’ 344 3 
9( 44") 27( 44°) 
= x9 —96cxr® +48c223 +6403 (x —8c) (x9 +228cx> +487 23 +64c3) 
= 9x? (x3+4c)2 ? 2723 (x3 +4c)3 , 


It is clear that if P = O,T, or To, then 3P = O and (Wo $)(P) = O. Therefore, 
(0 9)(P) = BP. 0 


Recall that Q(./c)* is the multiplicative group whose elements are of the form 
m+ n/c, where m and n are elements of Q, and Q(,/c)*? is the subgroup of the cubes 
of the elements of Q(,/c)*. 


Proposition 3.1.5 (Properties of : E’(Q) + E(Q)). 
(i) Oc o(E"(Q)). 
(ii) Th € o(E"(Q)) éf and only if c = 2%-?m where j,k € Z and m€ Q. 
(iii) Let P = (z,y) F O € E(Q) with y A —Ve. Then P € W(E"(Q)) if and only if 
y+ Ve=1 (mod Q(ye)**). 
Proof. 


(i) Recall that O is considered rational and is therefore an element of E’(Q). Thus by 
the definition of w, it follows that O € u(E’(Q)). 


(ii) (=) Let T2 € ~(E’(Q)). Then there exists (x,y) € E’(Q) such that ¥(z,y) = 
(0,—/c). From the definition of 7, we can conclude that x? — 108c = 0, giving us 
that v3 = 108c. Since (x,y) € E’(Q), it follows that y? = x? — 27c, or equivalently 


(iii) 
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y = tV23—27c. Substituting x? = 108c into y = +Vx3 — 27c, we have that 
y =+vV81c = +9V/e. Since y € Q, it must be that c is a perfect square. Also, since 
x = W/108c = 3¥/4c and x € Q, we can conclude that 4c must be a perfect cube. 
Therefore, c = 26-?m** where j,k € Z and m€ Q. 


(<) Let c = 2&-2m°* where j,k € Z and m € Q. Then 
(ey) = (3 252k — 3°24 13) € E’(Q) 


and (x,y) = T>. Therefore, Tz € p(E’(Q)). 


(=) Let P = (x,y) # O € E(Q) with y 4 —Vé, and let P € o(E’(Q)). Then by 
the definition of w, there exists (71, y1) € E’(Q) such that 


ne x? —108c y? + 243cy 
ee One «12a 


Thus, 


3 

+ 243¢ 

ytve = 2 ve 

2724 

y? + 3° cyt + 3323 cl/? 

2723 

ye + 3°cy: + 33(yt + 27c)cl/? 

Py fi 

yp + Bcl/2y? + 35 cy, + 35c3/? 
2723 

_ (4 + ) : 
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1 (mod Q(Ve)*8). 


(<=) Let P = (x,y) # O € E(Q) with y 4 — Vc, and let y+ Vc = 1 (mod Q(/e)*?). 
Then y + /¢ = t® for some t € Q(/c)*. Let t = 4, which is well defined as t # 0. 
It follows that f° = x = y— Jc and tt =z. Since t and t € Q(,/c)*, we know that 
t=r-+s/candt=r-—s,/c where r,s € Q. So 


t+t=2r and t—t=2sV/c. (3.1) 
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Also, note that 
B-P=2/e and +P =2y. (3.2) 


Consider 


_ (6¥e 9Velt +2) 
(oun) = (FS, Dae ’ 
which is well defined as t 4 ¢. We claim that (x1, y,) € E’(Q) and (21, y1) = (2, y). 
Let’s start by showing that (21, y,) € E’(Q). Using (3.1), we have the following 


simplifications: 


ale (ie Svat) 


t—t’ tt 


= 3 Or 
a s’ sg }- 


Since r,s € Q, it follows that x; and y; are rational. 


Now let’s show that (x1, y1) satisfies y? = 2° — 27c. Consider the following: 


54: S ACA SS 
SG-— HELD? |S 4G ee AKG 
3¢=DELD? = 4 -F)Se—B:. 


By (3.2), 


5E= DL => Set 


8le(t—#)(t +8)? = 216e/c— 27c(t — t)? 
8lc(t+t)? —  216c/e Sus 
(¢-#2 = (¢-F3 

9/e(t +8) \? 6/¢ 
ee - (4) “Sn 
ye = Re 27. 


Therefore, (71, y1) € E’(Q). 


Now let’s show that v(x1, y1) = (x,y). From the definition of w, we have 


w (21,41) 


im et) 


t t—t 


~ 108¢ (svar) " 4 243¢ (469) 


ce ¥ —t)% Bevelt +t)? + 3’eVelt + t)(t — 0)? 
2234¢(t — 8) 236c/e ) 


y 
4 (¢-t)? (¢€+0°4+3¢+28)(t-7t) 
: ) 


3(t-t) 8 
3PE+L3E (t+O(?? =) 
2 


3(t—t) ’ 


a = 
3( 
= (2z,y) 


Therefore, we have P € ~(E"(Q)). 
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Let a: E(Q) > Q(Ve)*/Q(/c)*? be the map defined by 


y+ ve (mod Q(yc)**), if P= (x,y) #O,(0,-vo), 
a(P) = 1 (mod Q(/e)**), if P=O, 
4c (mod Q(,/c)*3), if P = (0, -/c). 
Proposition 3.1.6. 


(i) The map a: E(Q) > Q(Ve)*/Q(/e)** described above is a homomorphism. 


(ii) The kernel of a is the image w(E’(Q)). 


Proof. 


(i) We will use the same strategy as that of Proposition 2.2.4. That is, we will show that 
a takes inverses to inverses and that if P) @ Po @ P3 = O, then a(P;)a(P2)a(P3) = 


1 (mod Q(,/c)**). 


Let P = (x,y) £ O or (0,+,/c). Then 


a(—P) = a(x, —y) 


= (y+ vc)? (mod Q(vc)**) 
= a(P). 


If P = O, it is clear that o(—P) = a(P). If P = (0,/c), then a(P) = 2,/e. So 
a(P)~* = 4c. Now a(—P) = a(0, -c) = 4c (mod Q(,/c)**), as desired. Hence, a 


sends inverses to inverses. 
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Let Py = (1,91), Po = (#2, y2) and P3 = (x3, y3) be distinct from O and (0, —,/c). 
Assume that P, 6 P) 6 P3 = O and let y= max+v be the line that passes through 


all three points, or equivalently « = 4". Let’s find the intersection of this line with 


the curve EF: 


a = y’-c 
y—v : 
ene 
m 
y> — 8y7u + 3yv? — v3 2 
m3 ee 
y? — (Bu + m)y? + 307y +em3 —v? = 0. (3.3) 


Since P,, Pj and Ps are the intersections of the line y= ma+v with E, then y1, yo 


and y3 are roots of (3.3). It follows that 


y? — (8u 4+ m3 )y? + 3u2y + em3 — v3 


= (y—m)(y — y2)(y — ys) 


y® — (yr + yo t+ ys)y? + (yiye + yiys + Y2Ys)Y¥ — WLY2Ys- 


Equating the coefficients, we have that 


38u+m = Y1 + Y2 + Y3 
3u = yy t+ yiys + y2ys 
v—cem> = Y1Y2y3- 


Now let’s show that a(P,)a(P2)a(P3) = 1 (mod Q(/c)**). Using the definition of 
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qa and the equations above, 


a(P, )a(P2)a(P3) (yi + Ve)(y2 + Ve)(ys + Ve) 


= myoys + (yiye + yiys + yous)Ve + (yi + yo + y3) (Ve)? + (Ve)? 


= vem? + 3v°Ve + (80 + m®)(Ve)? + (Ve)? 
= v4 3v2Ve+ 3u(Ve)? + (ve)? 
= (v+vo 


II 
—_e 
=~ 
= 
° 
Q 
S 
S 

x 
w 
ae 


As with the proof of Proposition 2.2.4, the other cases can be easily checked. 


It is clear from the definition of a and Proposition 3.1.5 that O € ker a and 
Oc€imw. 


Let To € w(E'(Q)). Then by Proposition 3.1.5, c = 2%-—?m®*, giving us that 
Ac = 263 mk — (22%m?*)° =1 (mod Q(/c)**). Hence, Tz € ker a. To show con- 
tainment the other way, assume T> € ker a. Then Th € E(Q) and a(0,— Vc) = 
1 (mod Q(/c)**). Since Tz = (0,—/c) € E(Q), it must be that c is a perfect 
square. Also, in order for a(0,—./c) to map to 1 modulo Q(,/c)**, we have that 4c 
must be a perfect cube in Q(./c)*. If c is a perfect square, then Q(,/c) = Q. Thus 
dc must be a perfect square and perfect cube in Q, implying that 4c = 2©m®* for 
j,k €Z and m € Q. By Proposition 3.1.5 part (ii), Tz € w(E'(Q)). 


Let (21,41) 4 O € ¥(E’(Q) for y 4 -Ve. Then y; + Vc = 1 (mod Q(,/e)**) by 
Proposition 3.1.5 part (iii). So (a1, y1) € ker a. Now assume (21, y1) € ker a. Then 
a(x1, 41) = 1 (mod Q(yc)*?). Thus, (21,41) € Y(£"(Q)) again by Proposition 3.1.5 
part (iii). Therefore, the kernel of a is the image ~(E'(Q)). 
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3.2 A New Formula for Rank 
Recall that 


E(Q) =Z®ZO---OZ OZ, OZ, ©--- O Dyys (3.4) 
-_ TO 


r summands 


where each p; is prime, and r is the rank of E(Q). 


We know by Proposition 3.1.4 that wog: E(Q) > E(Q) results in multiplication 
by three. Hence 


im (Wo ¢) = 3E(Q) & @ 32) @ (8 32,1) 


So the quotient group 


Z, »; 
E(Q)/3E(Q) & (8 x) @ (ee 2 =|, (3.5) 


i=1 i=1 38Z »; 
v J Dy 


Let E(Q)3 be the 3-torsion subgroup of E(Q) (i.e. E(Q)3 is the subgroup of all 
Q € E(Q) such that 3Q = O). By (3.4), there exist generators, say 


Pr Pied Pe Qi ho fs Oe Te) 


such that every point P € E(Q) can be written as 
P=nP,6---On,-P, 8m1Q16---Om.Qs 


where each integer n; is uniquely determined by P and the integers m; are determined 


modulo P;’ . 


In order to find |F(Q)s3|, let us examine when 3(n,P, +--- + n,;P, +m1Q + 
+--+ msQs) = O. This will only happen if n; = 0 for each 7 and 3m; = 0 (mod p’?) for 
each j. If p 4 3, then 3m = 0 (mod p’) if an only if m = 0 (mod p’). If p = 3, then 


3m = 0 (mod p’) if m = 0 (mod p”) or m = 0 (mod p?~*), which will occur if m = p’~! 
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or if m = 2p’—'. So for each term n;P;, we have one choice, n; = 0. For each term m;Q;, 


we have one choice if p # 3 and three choices if p = 3. Thus 
|E(Q)3| = 3% (3.6) 


where N is the number of p; = 3. 


Now we are ready to prove a theorem regarding the rank of E(Q) for our new 


curve EB: y? = x2 +c. 


Theorem 3.2.1. Let ¢: E(Q) > E'(Q), v: E'(Q) > E(Q), a: EQ) — V/A Ve)*8, 
and al: E'(Q) > Q*/Q(Vc)*? be group homorphisms as previously defined. Then 


Jim a|-|ima’| _ gr 


|ker | - [ker | ~ 


where r is the rank of E(Q). 


Proof. From (3.5), we know that 


Ue 


Z 
Since Z/3Z = Zs, it has order 3. For each ae we have 
D; 


Z%i ~) Zs pi=s3 
32 0 pF3 


Thus 
|E(Q)/3E(Q)| = 3" -3%. 


Since wo ¢ is multiplication by three, from the definition of cokernel and equation (3.5), 


we know that 


|coker (7) 0 ¢)| = |E(Q)/3E(Q)| = 3" -3% = 3" -|E(Q)s]. 
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This gives us 


|coker(Wo )| _ gr 
|E(Q)3| , 


Since £(Q)3 is defined to be all Q € E(Q) such that 3Q = O, and we know that wo @ 
results in multiplication by three, it follows that E(Q)3 = ker(wo ¢), and therefore 


lcoker(W 0 8)| op 
|ker(w 0 )| 
Which, by Theorem 2.3.4, gives us 


|coker w||coker ¢| __ ,, 
[ker #llker | ee 


Also, from Proposition 3.1.6 part (ii), we have ker a = im y. So by the same 
argument as used in our proof for the theorem of rank in Chapter 2, |coker ~| = |im a 


and |coker ¢| = |im a’|. Therefore, 


Jima|-|ima’| — ,,. 


lker | [ker 6] ~ 
where r is the rank of E(Q). 


Corollary 3.2.2. The formula for the rank of E: y? = «34+ c for c € Q* can be found 


by considering the following cases for c. 
(i) If ¢ or —27c is a perfect square, then |im a| - |im a’| = 3’*+. 


(ii) If neither c nor —27c are perfect squares, then |im a] - |im a’| = 3". 


Proof. 


(i) If cis a perfect square, then T, = (0, /c) and T) = (0, —,\/c) are contained in E(Q). 
So ker @¢ = {O,T,,T2}, which has order 3. However, for E’: y? = x? — 27c, the 
points T, = (0, /—27c) and Tz = (0,-—/—27c) are not contained in E’(Q). So 
ker w has only one element, O. A similar argument holds —27c is a perfect square. 


Thus the formula from (3.7) simplifies to |im a| - |im a’| = 3"*1. 
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(ii) If neither c nor —27c is a perfect square, then T;, T2, T; and T2 are either imaginary 


or irrational. Thus |ker ¢| = 1 and |ker ¢| = 1. Therefore, |im a| - |im a’| = 3”. 


In Chapter 2, we looked at a few examples for which we computed the rank of a 


given curve. Recall that im a C {+p{'p5? ---p;'} where each p; is a distinct prime divisor 


of b (mod Q*). For our new curve, the following theorem can help us to find the rank 


of certain curves. 


Theorem 3.2.3 ([HHW93]). Let E: y? = a3 +n?, n € k* be an elliptic curve over k and 


W = aly 3 Then ima lies in the Z/3Z-vector space generated by 


(i) all primes dividing the third-power-free part of 2n, if k = Q, or 
(ii) w and all primes dividing the third-power-free part of 2n, if k = Q(w). 
Example 3.2.1. Show that the rank of E: y? = 2° +16 and E’: y? = x? — 432 is 0 and 


find E(Q) and E’(Q). 


Solution. Applying Theorem 3.2.3 to the curve EF, we have that n = 4, so that 


2n = 8 = 23. Since there are no prime divisors of the cube free part of 8, ima = {1}. 


For the curve E’, we have that n = /—432 = /—27-16 = 2? Wy, from 
which it follows that 2n = 23 (v =3) 3 Thus, by part (ii) of Theorem 3.2.3, the im a’ C 


{1,@,w?}. Now, E’ contains the rational point (12,36). From the definition of a’, 


36 + «/=27 -16 
= 36+4/—27 
= 2 (v=)! 28(v=3)" 


28 (/=3)! — 2° (V=3)" 
2 


= P(/=3. 


= SES (nod O(V=52)") 


Ss ts 


a! (12, 36) 
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Since a’ is a homomorphism, and (12, —36) is the additive inverse of (12,36) 
in E’(Q), it follows that a/(12,-—36) must be the multiplicative inverse of a’(12,36) in 
Q(/—432) /Q(/—432)*3. Hence, a/(12,-36) = wt = w*. Thus, im a’ = {1,0,07}. 
Since |im a| = 1 and |im a’| = 3, by Corollary 3.2.2 part (i), the rank of E and E’ is 0. 


Now let’s find E(Q) and E’(Q). Some obvious rational points on F are (0, +4). 
So at least O, (0,4) and (0,—4) are contained in E(Q). To continue, we will need the 


following well-known theorem. 


Theorem 3.2.4 ({Hus, p. 35]). Let c be a non-zero integer which is sixth power free. Let 
E be the elliptic curve 
E:y=2%+c, 


and let ® C E(Q) be the subgroup consisting of all points of finite order. 
(a) The order of ® divides 6. 


(b) The isomorphisms of ® are given by the following table: 


S, ye 1, 
aw 4, if cA 1 is a square, or if c= —432, 


Zs, if c#1 is a cube, 


, otherwise. 


Since c = 16 is sixth power free and c ¥ 1 is a square, we know from the theorem 
above that the torsion subgroup of E(Q) is isomorphic to Z/3Z. We know that there 
are no points of infinite order in E(Q) since the rank of E is 0. Thus, E(Q) = Z/3Z. 
It follows that E(Q) = {O,(0,+4)}. For E’(Q), since c = —432, we can again use the 
theorem above to show that E’(Q) = {O, (12, +36)}. 


For our new curve, the following table provides the rank of E(Q) for various 


values of c [Hus, p. 37]. 
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Rank Cc 
0 1,4, 6, 7, 13, 14, 16, 20, 21 
-1, -3, -5, -6, -8, -9, -10, -14, -432 
1 2, 3, 5, 8, 9, 10, 11, 12, 18 
-2, -4, -7, -13, -15, -18, -19, -20, -21 
2 15, 17, 24, 37, 43 
-11, -26, -39, -47 
3 113, 141, 316, 346, 359 
-174, -307, -362 
Table 3.1: Values of the rank r for E: y? = 23 +c 
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Chapter 4 


Conclusion 


We would like to conclude with some ideas on how the reader can expand upon 
the concepts presented in this paper. It would be interesting to find what questions are 
still unanswered regarding elliptic curves, and which of these unanswered questions are 


considered significant? 


We mentioned the Birch and Swinnerton-Dyer conjecture, but more time could 
be devoted to understanding the Hasse-Weil L-function, the statement of the conjecture, 
and its significance. The Clay Mathematics Institute chose the Millenium Prize Problems 
not only because they are difficult problems to solve, but also because they are considered 
to be important and relevant. So why is the solution of the Birch and Swinnerton-Dyer 


conjecture so crucial? 


Another extension of this paper might be to see how Andrew Wiles used elliptic 
curves to prove Fermat’s last theorem. His proof of the semistable modularity conjecture 
was key to the proof. An Overview of the Proof of Fermat’s Last Theorem by Glenn 
Stevens outlines all of the work leading up to Wiles’s work that shows the key role elliptic 
curves and Galois representations had in the final proof [Ste97]. It also shows that Wiles’s 


work was really the culmination of the work many people. 


Finally, all of the work we have done here has been very abstract, but it would 


be interesting to study the applications of elliptic curves. Elliptic curves are used in 
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cryptography to factor composite numbers that are the product of two extremely large 
primes. The factorization of these composite numbers plays are large role in the privacy 
of our information when it is exchanged through the internet. Elliptic curves have taken 
algorithms that computers were using, and have sped up the process. A good place start 
when studying this topic further is with Pollard’s p— 1 Algorithm and Lenstra’s Elliptic 
Curve Algorithm. 
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